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Abstract 



This work deals with Implicit Computational Complexity, a research area that characterizes 
the Computatiorial Complexity Classes by means of formal tools that are independent from 
Turing machines, the standard model of reference for such characterizations. 

Our primary motivation is the comparison of two different traditions used to characterize 
the class FPTIME of the polynomial time computable functions. On one side, FPTIME 
can be captured by Intuitionistic Light Affine Logic (ILAL), a logic derived from Linear 
Logic, characterized by the structural invariant Stratification. On the other side, FPTIME 
can be captured by Safe Recursion on Notation (SRN), an algebra of functions based on 
Predicative Recursion, a restriction of the standard recursion schema used to define primitive 
recursive functions. Stratification and Predicative Recursion seem to share common underlying 
principles, whose study is the main subject of this work. 

The starting point is a known result. Under natural and straightforward assumptions, 
a relation between Stratification and Predicative Recursion exists. It takes the form of a 
compositional embedding of a fragment BC~ of SRN into ILAL. 

We propose two different extensions of such an embedding. 

The first extension follows from a systematic and uniform analysis of the deductive 
systems, that we call subsystems, we obtain inside MS, a multimodal and stratified framework 
we introduce in this work. 

MS generates subsystems. Two features characterize every subsystem f of MS. (i) Every 
derivation of embodies the same Stratification principle we find in ILAL. (ii) Every f is 
defined by fixing an arbitrary set of modal operators, in analogy to the two modalities of 
ILAL, and choosing deductive rules in a well-defined set of rules that generalize those ones 
in ILAL. The point of having many modalities is to extend the set of derivations-as-programs 
available in P. The framework allows a "wild" arbitrariness in the definition of subsystems 
^, so it is often the case that P is polynomial time unsound, i.e. it can compute functions 
outside FPTIME. We need to develop polynomial time soundness criteria to distinguish inside 
MS those subsystems that only develop polynomial time sound computations. 

The starting technical tool to devise criteria is Context Semantics. Once given such semantics 
fiavored criteria, we supply some purely syntactic and decidable criteria, that allow to distinguish 
if a given subsystem P of MS is polynomial time sound or polynomial time wnsound just 
observing the syntactic form of the rules of P. Among the syntactic criteria there is the one 
that also determines the maximal polynomial time sound subsystems of MS, which are those 
subsystems that, fixed a set of modalities, contain the largest set of derivations-as-programs 
we use to control how the normalization proceeds. 

We have identified two subsystems of MS worth mentioning. 

The first subsystem is P^^- It is as computationally complex as the multiplicative 
fragment of Linear Logic, but it is a bit more expressive: P^^ contains among its proofs 
those ones encoding Church Numerals and the first basic operations on them. 

The second subsystem is SOLAL, a multimodal generalization of ILAL. soLAL allows us 
to partially fulfill the initial goal of finding a relation between Stratification and Predicative 
Recursion. Indeed, we can embed into soLAL a fragment SRN~ of SRN such that BC~ £ 
SRN- g SRN. 



As we said, a second kind of extension of the embedding from BC~ into I LAL is considered, 
independent from MS. We introduce Light Affine Logic by Levels (LALL), an affine deductive 
system based on a weaker form of the Stratification principle. While soLAL uses many 
modalities, LALL preserves the two modalities present in I LAL. Crucially exploiting the 
weaker form of Stratification of LALL, and the possibility of freely introducing recursive 
types without altering the complexity cost of the normalization of LALL, we show that all the 
finite fragments of SRN programs compositionally embed into LALL. 

Summing up, we investigate how to make the relation between Stratification and Pred- 
icative Recursion closer. We base our work on two, somewhat orthogonal, approaches. On 
one side, we generalize the modal aspects of I LAL, while preserving its original notion of 
Stratification. On the other, we exploit a generalization of the Stratification, while preserving 
the original set of modal operators. Both the lines of investigation this work develops move 
the relation between Predicative Recursion and Stratification a step forward. Despite of this, 
none of them is able to capture the whole SRN, at least not in the standard way. 

What we believe we learn thanks to this work is that the very abstract principles FPTIME 
relies on are still hidden in the syntactic bureaucracy that still contaminates systems like 
SRN, I LAL, soLAL, and LALL. 
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Chapter 1 

Introduction 



1.1 state of the art 

Implicit Computational Complexity. Our work relates with Implicit Computational Com- 
plexity, in the following ICC. We will briefly recall what it is. The theory of Computational 
Complexity, or CC [ ], classifies the computable functions in computational classes: for 
example, FPTIME is the class of all the functions computable ivith a Turing machine in a time that 
is polynomial in the size of the input, and FPSPACE is the class of all the functions computable 
with a Turing machine using an amount of memory that is polynomial in the size of the input. Now, 
though the computational model of Turing machines has been a standard for years, it is 
quite heavy. We mean, for example, it is very difficult to write any equation describing a 
complexity class, and this is because the model of Turing machines is not suitable for that. 
The ICC tries to characterize the same complexity classes in a way independent from such 
a model. For this purpose, several different approaches are used. We will deal in particular 
with two approaches: algebras of functions and light logics. 

In the first approach, a computational class (say, FPTIME) can be described as an algebra of 
functions, i.e. a set of functions containing some basic functions and closed under some oper- 
ators over functions. This is a style common in recursion theory, where e.g. the computable 
functions can be represented as the algebra of functions described by Kleene [Kle36, Odi89]. 
In Sections 2.7 and ff. we will recall two important systems of this kind, SRN [BC92] and the 
Ramified Recurrence [Lei93], that both characterize the class FPTIME. 

On the other side, light logics provide a completely different approach to ICC. The so- 
called Curry-Howard correspondence [How80, SrT J06] identifies an analogy between proofs and 
programs. More precisely, there exists a bijection between proofs of intuitionistic and purely 
implicative logic, in the formalism of natural deduction, and programs, in the formalism of 
typed A-calculus. The execution of programs corresponds to the normalization of proofs. So, 
a class of programs also corresponds to a class of proofs. This is the idea underlying light logics: 
a computational class can be represented using a logic. Such a logic must be even weaker 
than the intuitionistic logic, hence the name light. Some computational classes have already 
been characterized that way. Examples of light logics are LLL [vjiryb], ILAL [AR02] and SLL 
[Laf04], all characterizing FPTIME; ELL, characterizing the class of elementary functions 
[DJ03]; STAb, characterizing FPSPACE [GMR08]. Most of them are logics derived from the 
Linear Logic, or LL [Gir87]. Some more details will be found in Chapter 2. 

In this work, we will never refer directly to A-calculus, nor to the Curry-Howard corre- 
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Figure 1.1: The rules of ILAL, in a sequent calculus style. (*) Provided a does not occur free 
inr. 



spondence. We will study proofs, (to be precise, proof nets, see Section 2.3 or [<^n"*^6]), and 
we will study the normalization of proofs, under the assumption that the normalization of 
proofs is our computational model. 

Of course, the two presented approaches to ICC are not the only ones. An overview of 
other, different, approaches is in the introduction of [Lei94]. 

Intuitionistic Linear Logic (LL). Linear Logic [Gir87], at least in its intuitionistic variant, 
will be described in Section 2.3; here we just recall that LL is characterized by the presence of 
two kinds of binary connectives, called additives and midtiplicatives, plus one unary connective 
"!", or modality, called exponential. The traditional rules of weakening and contraction are 
restricted to the modal formulae only: 

r,!A, !AhB . FhB ^ . 

____ ___ weakemng. 

In (one of the possible formulations of) LL, the exponentials are controlled by the following 
rules: 

r,AhB . Ai,...,A),hB k>0 r,!!AhB . 

dereliction tunctorial, or soft, promotion diegme. 

r, !A h B . . . , !A^ h !B ^ F, !A h B ^ 

The real source of complexity, in the normalization of proof nets, is generated by the expo- 
nentials. So, the "secret" of light logics is a clever control over the exponentials. 

Intuitionistic Light Affine Logic (ILAL). ILAL is a light logic that was first presented in 
[Asp98] and [AR02], and its purpose is to characterize FPTIME simplifying the Light Linear 
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Logic of [Gir98]. The complete list of the rules of ILAL is in Figure 1.1, in a sequent calculus 
style. We now try to explain how these rules are obtained. They are derived from the rules 
of LL. In order to lower the complexity of the reductions, w.r.t. LL, ILAL forbids the dereliction 
and digging rules, and allows the functorial promotion with at most one premise: 

Ai,...,Ak^B ke{0,l} ^ 
!Ai,...,!A^h!B 

At this point, the logic that we have got is too weak. Indeed every reduction is performed 
in polynomial time, but it is not obvious (maybe it is impossible?) to represent the Church 
numerals inside it, and they are usually required to represent some form of iteration. The 
solution involves two steps: (i) the introduction of another modality "§" (paragraph), that allows 
a promotion rule more liberal than the "!", but which does not admit contraction, and (ii) the 
introduction of the free weakening (W) rule. W is the real difference between ILAL and LLL. 
The dynamic of the reduction of the free weakening rules allows to erase pieces of proofs in 
a simple way, without any need for additives. As observed in [Asp98]: "the abstinence from 
weakening leads to inessential syntactical complications" . So, ILAL just has multiplicative and 
exponential connectives. 

The free weakening has also some negative consequences, that force ILAL to be (i) intu- 
itionistic, and (ii) to include the somewhat weird rule h of Figure 1.1. The interested reader 
is referred to Section 2.4. 

Algebras of Functions vs Light Logics. Both ILAL and SRN, we already said, are able to 
characterize the functions in FPTIME. It is reasonable, thus, to compare these two systems. 

Both ILAL and SRN allow the representation of all the polytime Turing machines [AR02, 
Cob65, BC92]. However, at first sight, programming in ILAL seems easier than in SRN. The 
reason is that ILAL handles higher-order types, while SRN only handles first-order functions, 
from natural numbers to natural numbers. So, for example, [ ^sQ7, Hof03] show that there 
exist simple algorithms that cannot be written - at least not easily - in the systems based 
on predicative recurrence. Some of these algorithms can be written in ILAL, instead (but of 
course not all: the nesting of iteration is limited in ILAL, as well). 

On the other side, two facts suggest that SRN could express in a simple way programs 
that ILAL cannot. First, ILAL is strongly polytime, that is polytime under every strategy of 
reduction [Ter07], while SRN is weakly but not strongly polytime, i.e. it is polytime only 
under some precise strategy [' >W96, BDLM06]. And it is reasonable that many more weakly 
polytime algorithms exist, than strongly polytime. Second, at the moment it is not known a 
translation that compositionally translates programs of SRN into proofs of ILAL. In [MO04], 
it is shown a simple encoding that translates the programs of BC~, a proper subset of the 
programs of SRN, into ILAL, and it is also shown that it is not possible to extend the same 
encoding to the whole SRN (more details in Section 2.9). By the way, at the moment it is not 
known if BC~ captures all FPTIME, or not. In the same work [MO04] it is also shown that it is 
possible to extend BC~ to some BC* that captures FPTIME and that compositionally embeds 
into ILAL; however, BC* does not help understanding the intrinsic differences between SRN 
and ILAL, since it contains primitives extraneous to SRN. The situation is summed up in 
Figure 1.2: it seems necessary to extend ILAL to some system (3) that can contain SRN. Or, 
at least, we would like to find some extension (2) that captures at least some strict extension 
(1) of BC-. 
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Figure 1.2: Relations between SRN and ILAL. 

1.2 The problem 

Extending ILAL. The origin that justifies this work is the search for some extension of 
ILAL, that nevertheless characterizes the class FPTIME. It should be clear that many different 
extensions are possible, as we can imagine a large variety of rules to add to ILAL; the problem 
is not to escape from the domain of polynomial time. As an example of how extending ILAL 
may increase its expressiveness, we will consider two different extensions of ILAL by means 
of some forms of dereliction. Let us consider ILALi as ILAL plus the dereliction rule (already 
presented above). I LALi is not polytime, since it allows to write an hyper-exponential function 
that we are going to describe. Let us consider the following type for Church numerals: 

N = Va.!(a -o a) -o a -o a (the same as in LL). 

Then, one can build the following proof nets (i.e. proofs), with the expected semantics: 



succ 


N ^ N 


add 


N ^ N ^ N 


mul 


!N ^ N ^ N 


exp 




hypexp 


!!!N ^ N ^ N 



This means, for example, that it is possible to build a proof of N -o N called succ that, 
whenever cut with a numeral n, reduces to n + 1. Addition in fact is obtained concatenating 
numerals. Each one of the last three functions is obtained iterating the one that precedes it. 
For example, multiplication is in Figure L3a. 

So, ILALi does not work for our purposes. We may then imagine to allow the dereliction 
on the "§" instead than on the "!": 

r,§AhB §■ 

We obtain a system ILALg that does not enjoy cut elimination: there is no way to reduce 
a §-dereliction in cut with a §-box with some !-premises. We are not frightened by this 
inconvenience: the proof net containing irreducible cuts will be considered normal forms. 
We now show that ILALg is not polytime. It is possible to use the following type for the 
Church numerals: 

N = Va.!(a ^ a) ^ §(a ^ a) (as in ILAL). 
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© 




(a) 



Figure 1.3: Multiplication proofnet in ILAL plus [-dereliction (a) and in ILAL plus §-dereliction 
(b). Notice that N denotes a different type in the two cases. 

Now we can write, in ILALg, all the functions that we already encoded in ILALj, and with the 
same type. For example, multiplication is in Figure 1.3b. Thus ILALg is not polytime. 

The previous two examples make clear that, even if a great number of extensions of ILAL are 
possible, we need some way to understand which one are polytime, and which one are not. We need to 
consider a large number of possible extensions, and to study them in a uniform way. 

1.3 Contribution 

The overall picture. This work has the following main goals. 

1. We will present a class of light logics derived from ILAL that can be useful for the repre- 
sentation of computational classes. These logics will be called subsystems of a framework 
MS that this thesis introduces and studies. 

2. We will compare the two approaches to ICC already described: light logics and algebras 
of functions. This means that we will try to fill the question marks in Figure 1.2, along 
two different routes. 

• The first route is to search for an extension of ILAL inside the subsystems of MS, 
arriving for example to SOLAL, a subsystem that we can replace for the question mark 
(2) in Figure 1.2, for a suitable subsystem SRN~ of SRN in place of (1). 

• The second route is to turn to a weaker form of stratification that MS, for the moment, 
does not contain. Such a weaker form is in the logical system LALL (Light Affine Logic 
by Levels) that we shall present, which, in a precise technical sense, can replace (3). 
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Rephrasing the incipit of [Lei94], getting to the above two goals will help providing insights 
into the abstract nature of computing FPJ\ME functions, while offering concepts and methods for 
generalizing computational complexity to computing over arbitrary structures and to higher type 
functions. 

We now deepen a bit the description of our contribution. 

Multimodal Stratified framework (MS). One of the focuses of this work is what we call 
Multimodal and Stratified framework for poly time computations [RV08, RV09], that we will present 
in Chapter 3. Now we sketch the main features of MS. The framework allows to study in a 
uniform way a variety of different light logics, all derived from LL, and all described in the 
formalism of proof nets. Please notice that instead, in this Introduction, we have found easier 
to deal with the derivation trees of sequent calculus than with the proof nets. The various 
light logics that we will consider will be called subsystems of MS. 

Before any formal definition of the framework MS, we prefer to underline what are the 
key points of all its subsystems, (i) Each subsystem !P is defined as a particular set of building 
rules, i.e. rules that allow the inductive construction of proof nets. We will denote PN(!P) the 
set of such proof nets. Along the work, we shall refer informally to the elements of PN('P) as 
the proof nets ofP, and we shall say that P allows a rule R whenever Re P. (ii) All the proof nets 
that we consider are intuitionistic, that is proof nets with one only conclusion, (iii) Among 
the possible rules, there is the linear kernel of LL, whose rules will be recalled in Section 2.3 
and 3.1. This kernel includes the rules for multiplicative connectives and for second-order 
quantifiers, but not the rules for additive connectives. This fact is somewhat traditional in an 
affine context: the additives can be defined using the free weakening and the second order 
quantification, (iv) The exponential rules, or modal rules, derived from LL, are generalized 
in order to handle an arbitrary number of modalities, and not only the one of LL or the two 
ones of ILAL. This is why we say the framework is multimodal. This is analogous e.g. to what 
happens in [Sch94]. From the technical point of view, multimodality is obtained allowing 
the modalities to vary over a fixed - but arbitrary - set X, that usually will be finite, and 
defining the framework in a way that X is used as a free parameter, (v) On the other side, 
however, the framework puts some restrictions on the exponential rules. Remember that we 
are generalizing ILAL, so exactly as in ILAL the dereliction and digging rules are forbidden. 
These restrictions force the proof nets to reduce in a peculiar way: the promotion rules, inside 
a proof net, mark off some regions ("boxes") that reduce independently the one from the 
other, and the number of nested boxes around a given node of a proof net do not vary during 
a reduction. This behavior is called stratification, hence the name of the framework. 

And now, a slightly more formal definition of the framework. The framework is made 
up of a set of meta-building rules and meta-normalization steps, that will be defined resp. in 
Section 3.1 and 3.3. The meta-building rules allow the construction of meta-proof nets, i.e. 
proof nets with some parameters that may vary over a given set of modalities X. For 
example, 

r, mA, nA h B - , , , 

T,,A,B ^'^(^-^^ ^,n,,eX 

is a meta-building rule, that can be instantiated to the "usual" contraction provided ! € X 
and m = n = q =!. The meta-normalization steps map meta-proof nets into meta-proof nets. 
So, this implies that, once instantiated the parameters of the meta-normalization steps, we 
get normalization steps from proof nets to proof nets. For every fixed set X of modalities. 
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Figure 1.4: The structure between e and / is an example of spindle. If the spindle is dangerous, 
it is possible connect it to some g labelled B - mA'. 

is the set of all the instances of the meta-building rules, with modalities varying over 
X. Similarly, 7?(23x) is the set of all the instances of the meta-normalization steps. At last, a 
subsystem of MS is simply a subset "P c 23x- Each subsystem uniquely identifies (1) a set of 
proof nets PNCP), that can be built using all and only the building rules in "P, and (2) a set of 
normalization steps 7?('P) c PN(!P)^, which contains all and only the normalization steps in 
•^(©x) that correctly map proof nets of PN(!P) into proof nets of PN('P). 

Polytime subsystems. Up to here, we have described the statical properties of MS. But, 
as we already said, every subsystem P of MS identifies in fact a class of programs, and we 
are interested to the behavior of such programs. As a consequence of the constraints given 
by stratification, fixed a subsystem P c 33x, every reduction in ^ is performed in at most an 
elementary time in the size of the proof (read also: "every program executes in an elementary 
time in the size of the arguments"). 

We characterize those subsystems in which the reductions are performed in polytime 
(i.e. polynomial time). PMS is the class containing such subsystems. We describe how 
in Chapter 4. There, we will define two basic notions: (a) a dangerous spindle, recalled in 
Figure 1.4, that is a geometrical configuration that can be present inside the proof nets of 
MS, made up of two and only two paths connecting a contraction to a box; and (b) a sensible 
subsystem, that is a subsystem endowed with a sufficient number of rules, enough to encode 
a minimum amount of programs. The Polynomiality Criterion (Proposition 4.3.40) tells that: 

A sensible subsystem is polytime if and only if it does not allow the construction 
of dangerous spindles. 

The notions of spindle and dangerous spindle, as well as the proof of the Polynomiality 
Criterion, rely on the formal technology of context semantics, or CS, [DL08]. Notice anyway 
that the spindles provide an abstraction over CS: once defined them, only a small amount of 
CS is needed to understand if "P can build a dangerous spindle, or not. 

Anyway, this small amount of CS is still too much. We prove some more properties, 
more syntactical, that still discriminate among polytime and non-polytime subsystems, and 
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Figure 1.5: A picture of the poytime, non-polytime and maximal subsystems of 23x- 



nevertheless completely hide CS. For example. Proposition 4.4.15 tells that, given the rules 
of P, one can understand if P is polytime or not just looking at the relation over X that 
the promotion and contraction rules of P naturally define. 

Last but not least, we study the polynomiality of our subsystems concentrating on the 
maximal subsystems. Intuitively, a subsystem P of 23x is maximal if it is polytime, but any 
extension P U {R}, where R is any other rule of 23x, is no more polytime (see Figure 1.5). 
So, a generic subsystem P is polytime iff it can be extended to some polytime subsystem 
(Proposition 4.4.32). We think that the study of maximal subsystems is important; they are 
the most interesting subsystems, because they allow the greatest flexibility on composing 
rules but nevertheless they are polytime. This is the reason that originates the Structure 
Theorem (Theorem 4.4.25): it describes all and only the maximal subsystems P just giving 
conditions on the syntax of the building rules in P. 

Algebras of Functions vs. Subsystems: a restatement of the original problem. Let us 

return to the original problem: the embedding of SRN (or some other algebra of functions) 
into ILAL (or some other light logic). We restate it in the following way: "find a subsystem of 
MS in which it is possible to encode all the SRN programs". We face the question inside Chapter 6, 
but we will not completely succeed in our search. We present a subsystem soLAL {sorted 
ILAL) that can encode some more programs of SRN as compared to ILAL, thus filling the 
question mark (2) in Figure 1.2 for some suitable super-system (1) of BC~. 

soLAL extends ILAL by means of sorted modalities: soLAL is made up of many copies 
of ILAL, each one with its own modalities "iV and "i§", each with its sort /. This allows a 
mechanism forbidden in ILAL: the duplication of a §-box, with the proviso that the sort of 
the input paragraph box is smaller than the one in output. For example, this means that 
SOLAL proves /§ N -o (f + 1)§(N ® IN). Of course this duplication is limited in power, because 
the type of the result is different from the type of the input. As a consequence, we shall 
see that it is possible to encode in soLAL some programs g e SRN \ BC~. But, we stress, 
we are able encoding g under the same very natural assumptions of [MO04]. However, the 
type of the inputs of g is different from the type of its output, so that g cannot be iterated 
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anymore. We will call SRN the set of functions that can be written in soLAL, and such that 
BC~ c SRN- c SRN. 

Anyway, we could not find any subsystem filling the question mark (3). This suggests 
the following considerations. 

There is an analogy between the stratification typical e.g. of ILAL and the predicative 
recurrence at the basis of SRN . This is the separation of objects - otherwise indistinguishable - 
into separate levels, or sorts; and such separation is at the basis of the control over complexity. 
Despite of this similarity, there is really a great difference between the two approaches to 
ICC. Algebras of functions have a great freedom in both (a) choosing their base functions, 
and (b) distinguishing different kinds of variables (or, different types for numerals). In light 
logics, all these features can only be obtained as indirect consequences of the chosen logical 
rules and of the chosen representation of the data-types. What we are saying is that the root 
of the un-relatedness of SRN and light logics lies in the choice of the syntax we start from. 

So, for example, the known fact that ILAL is strongly poly time, while SRN is just 
weakly polytime, is only a consequence of the chosen syntax, and not the origin of such 
un-relatedness. 

To conclude, we anyway think that some subsystem of MS where to embed SRN can 
still exist, not necessarily stickying to all the natural assumptions in [ ]. The following 
observations justify why. The programs of SRN can reduce in exponential time and space, 
hut the size of their normal forms is always polynomial in size. This feature is uncommon in 
subsystems of MS. So, the exponential reductions of SRN appears to us as degenerate cases of 
reductions. Anyway, this is still an on-going work. 

Light Affine Logic by Levels (LALL). Once "exhausted" the attempts to relate SRN with 
usual stratified logics, we turn our attention to a weak notion of stratification. We will present 
in Chapter 7 a polytime system LALL (Light Affine Logic by Levels) that extends ILAL using 
(i) the so-called "levels" of L^ [BMIO], and (ii) some recursive type, namely the type y of the 
Scott numerals [ACP93]. The notion of "level" underpins a different notion of stratification. 
Thus, LALL is not a subsystem of MS. In Sections 8.2.2 and 8.2.3 we will try to generalize the 
framework MS in order to capture LALL; but this is still an on-going work. 

Inside LALL it is possible to encode finite initial fragments of all the SRN programs. We 
mean, for every SRN program t, and for every finite / € N, we will be able to produce a 
proof net [i]' of LALL that represents a program whose output coincides with f for every 
input of length less than /, and returns an approximation of the result on every other input. 
The encoding [•]' is based on the one given in [MO04]. Scott words and levels are used 
because of the following properties, (a) For every I e N, it exists in LALL a proof net 
VS;[s] >o5^ -o y iSi y, that duplicates every number at most I bits long. This is not true for 
Church numerals, (b) Using levels as in L^, §{A O B) is provably equivalent to §A (g) §B, so 
that in particular for every k it exists in LALL a proof net VS/[s] > §*^oS^ -° <8) §^=5^ with the 
same semantic of the one in point (a). This is not possible in a stratified context, (a) and (b) 
together allow a mechanism impossible in ILAL: the duplication of arguments. On the other 
side, Scott numerals cannot be used to iterate ad libitum other functions. This is the reason 
that obliges us to encode just finite fragments of programs, and not whole programs. 

At our knowledge, there are few works in literature that exploit the use of recursive 
formulae for calculations [BM04, DLB06]. 
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1.4 Guideline for the reader. 

Chapter 2 contains basics knowledge about A-calculus, proof theory, computational com- 
plexity, light logics and predicative recurrence. Most of the Chapter is mainly intended for 
non-specialists. Section 2.7, on the other side, presents SRN, that will be required later, in 
Chapters 6 and 7; so probably every reader wants to refer to this Section. The framework 
MS will be studied from Chapter 3 up to Chapter 6. They are quite technical; we suggest 
the reader, for a first lecture, to read only the main definitions and theorems. The most 
important are the Polynomiality Criterion (Proposition 4.3.40) and the Structure Theorem 
(Theorem 4.4.25); some more propositions are summed up in Figure 4.1. Chapter 7, at last, 
presents LALL, a light logic that is not a subsystem of MS, but that can be used to encode 
finite fragments of SRN programs. 
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Chapter 2 

Preliminaries 



In this Section we recall the basics concepts needed to put this thesis in his correct background. 

The Section is mainly intended for non-specialists, who need a picture of the back- 
ground around this Thesis. So, it should not be surprising that most of details will be 
skipped, or presented in an informal or naive way. 

A more detailed picture is e.g. in [Maz02, Sch08]. 

2.1 Proofs as Programs 

In this Thesis we shall deal with proofs, in some precise formalism to be defined. However, we 
will see the proofs as they were programs: we will say that our proofs normalize, thinking that 
the corresponding program executes; and we will call results of the computation the proofs that 
cannot be normalized any more. Theorem 2.1.2 shall make more precise this correspondence: 
there exists a bijection between proofs - in the formalism of natural deduction - and programs 
- in the formalism of A-calculus. We are now going to recall what are A-calculus and natural 
deduction, in order to formalize Theorem 2.1.2. 

Untyped A-calculus. A-calculus is a model of computation, whose programs are called 
A-terms [Bar84]. A-terms are syntactical objects defined by the following grammar: 

t,u::=x\ Ax.t \ tu 'ixe'V 

where is a countable set of symbols called variables. Every A-term can be seen as a program; 
the execution of that program is given by the rule of jS-reduction: 

{Ax.t)u -^ji Mp/r]- 

It's possible to prove that every Turing machine can be codified into a A-term, and of course 
there exists a Turing machine that performs the reduction of any given A-term. So, this is a 
model of calculus equivalent to Turing machines. 

It is very interesting to study the semantics of these objects [AC98]. Intuitively, A-terms 
are (computable) functions. But of course they cannot be functions according to the usual 
set-theoretical conventions, as they violate the Axiom of Foundation: tt is a correct A-term, 
while no function can be applied to itself. 

Anyway, this is not the matter of our work. 
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In order to simplify the semantics of A-terms, it is often convenient to consider only a 
typed version of the A-calculus. This can be done in two different ways. 

Typed A-calculus: approach a la Church. Types and typed A-terms are syntactical objects 
defined as follows: 

A,B::^a\A^ B \faeT 

t,u::=x^\ (Ax^i^f | (t^^^^f Vx^ e ^ 

where 7~ is a countable set of symbols called atomic types and "V is as before. Typed A-terms 
can be seen as a small subset of the A-terms, just forgetting the types. Their semantics is 
clear: a type A is a set, and a term t'^^^ is a (computable) function from A to B. 

Typed A-calculus: approach a la Curry. It is defined a notion of typeability over untyped 
A-terms. So, for example, Ax.x is typeable because it can be endowed with a type A ^ A. Its 
type it is not unique, because also B ^ B does the job. Only typeable A-terms are accepted. 

Expressiveness of Typed A-calculus. In the typed settings, only a small set of Turing- 
computable functions can be represented. In order to restore the completeness, one possible 
solution is the introduction of some kind of fix point operator; but at the moment this is not 
needed in our work. A different way to restore expressiveness (without however reaching 
full Turing completeness) is the introduction of the second order quantifier, as in Girard's 
system F[GTL89]. 

Proof theory. There exist some different formalisms for proofs. Each formalism tries to 
capture what are the elements to make a proof correct. So, each formalism defines one 
or more axiom to start with, and one or more deduction rules that are allowed to derive 
theorems. 

Hilbert systems use only 1 logical rule {modus ponens) and an infinite number of different 
kinds of axioms. Very often, all tautologies are included among these axioms. This kind of 
systems is quite unnatural and, at the moment, they are not used when studying ICC. 

In natural deduction [Pra65] there are no axioms at all (well, they are hidden in the syntax), 
and a lot of rules. Typically this is the formalization of the approach that a mathematician 
uses to find out a proof. Among these rules there are both introduction and elimination rules. 
One usually denotes NJ and NK resp. the intuitionistic and classical version of natural 
deduction. 

In the third formalization, Gentzen's logistic calculi or sequents calculus [Gen35], there 
is exactly 1 kind of axiom (identity), 1 elimination rule (cut, quite similar to modus ponens) and 
a lot of introduction rules. Gentzen denotes LJ and LK resp. the intuitionistic and classical 
version of logistic calculi. So, most of the axioms of the Hilbert systems are here turned into 
logical rules. 

The fourth - and last - formalization that we consider is very different: a proof net [GirQ6] 
is a proof represented by a particular graph. Proof nets take their origin in Linear Logic, 
but can be applied in fact also to classical and intuitionistic logic [Rob03]. The main idea is 
that in both natural deduction and logistic calculi many proofs of a same statement differ 
just for the - irrelevant - order of application of the logical rules; using a graph-theoretical 
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representation these differences disappear, and all these proofs are identified in a single proof 
net. 

Cut-elimination. The first important result in proof theory is the Haupsatz: 
Theorem 2.1.1 (Haupsatz (Gentzen, 1935)) 

In both LK and LJ, the cut rule is not necessary. There exists an algorithm (called cut- 
elimination) that transforms every LJ (resp. LK) proof without non-logical axioms into a cut- 
free LJ (resp. LK) proof. In LJ this algorithm is deterministic. 

This means that, if we were just interested in the set of provable sequents, the cut rule 
could be avoided, and logistic calculus would be a system with only introduction rules. In a 
computational perspective, on the contrary, the cut rule will have a very important role. 

The algorithm of cut-elimination has also an equivalent version in NJ and NK, that we 
will call normalization. Essentially, the normalization removes useless pair of introduc- 
tion/elimination rules. 

Curry-Howard correspondence. At last, the already announced Theorem: 
Theorem 2.1 .2 (Curry-Howard Correspondence) 

There exists a bijection between proofs of purely implicative NJ and typed A-terms. Under 
this bijection, the normalization of proofs corresponds to |S-reduction of A-terms. 

The Curry-Howard correspondence suggests a model of computation based on proofs 
instead than programs. 

In our work we use little natural deduction, and more logistic calculi and proof nets. 
Every proof net stands for several N J proofs, and every N J proof corresponds to several LJ 
proofs. So we can speak about Curry-Howard correspondence also between typed A-terms 
and purely implicative proof nets, an between typed A-terms and purely implicative LJ 
proofs. 

The following syntax is used for making the correspondence of Theorem 2.1.2 effective: 

T,x:A\-t:B Y \- t : A Y \- s : A ^ B p 

x:A\-x:A F h Ax.t : A ^ B ^ Y \- st : B ^ (2.1) 

Types are omitted, as they are trivially induced by the formula. Thanks to deductions (2.1), 
every proof of I- A is associated to a program t such that \- t : A;tis called realizer of the proof, 
and in some sense t is the program that proves A. Now it's clear why the logic is intuitionistic 
and not classic: A must be proved constructively. This vision is called Heyting semantics of the 
proofs; the interested reader can refer to [GTL89]. 

2.2 Computational Complexity 

The objects studied by Computational Complexity [Pap94] are both computationally solvable 
problems, and algorithms that solve them. Informally speaking, CC target is to give each 
algorithm and each problem a complexity measure; for example, how much time a solving 
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program takes to execute, or how many resources does it use? So, the main aim of CC is the 
identification of a hierarchy of complexity classes of problems. 
In particular the theory identifies: 

• a hierarchy of time classes: PTIME and EXPTIME are the classes of problems that can 
be solved with a Turing Machine in resp. polynomial and exponential time in the size 
of the input. 

• a hierarchy of space (that is, used memory) classes: L, PSPACE and EXPSPACE are 
the classes of problems that can be solved with a Turing Machine in resp. logarithmic, 
polynomial and exponential space in the size of the input. 

• for each one of the previous classes, a non-deterministic class: that is, the class of prob- 
lems that can be solved according to that complexity bound using a non-deterministic 
Turing Machine, which is able to make always the better choice. 

• a hierarchy of computable functions: e.g. if PTIME identifies the problems solvable in 
polynomial time, FPTIME identifies the class of the fimctions computable in polynomial 
time. 

There are hundreds of results actually known about CC. We just remember that: 

L = NL c PTIME c NPTIME c PSPACE = NPSPACE c 

c EXPTIME c NEXPTIME c EXPSPACE 

and 

PTIME c EXPTIME L c PSPACE c EXPSPACE 

but all the other inequalities are not known yet to be proper or not. PTIME = NPTIME is one 
of the most well-known open problems. 

All our work concentrates on the class FPTIME of the functions computable in polynomial 
time. 

2.3 Linear Logic, Affine Logic, and Proof nets 

Linear Logic. The logic that we use in this work is the Linear Logic (LL) [1ir87], mainly in 
its intuitionistic and affine form [AR02]. 

Here we sum up the main features of the LL, without any hope to be exhaustive. 

• The sequent calculi systems LJ and LK are made up of both logical and structural rules. 
Traditionally, structural rules {contraction and weakening) are accepted by every logician, 
and the studies concentrate on the logical rules. 

• On the contrary LL focuses on the structural rules. 

• LL is built around a kernel of rules MALL (Multiplicative and Additive LL) where the rules 
contraction and weakening of LK are forbidden. This means, in some sense, that A h B iff B 
can be proved from A using the formula A exactly once. This is the linearity. 

• MALL is more similar to classical logic than to intuitionistic logic, and nevertheless its cut 
elimination procedure is deterministic. 
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contraction 



dereliction 



Figure 2.1: The rules of Irvtuitionistic Linear Logic, in a sequent calculus style. (*) Provided 
a does not occur free in T. 



• It appears that the conjunction and disjunction can follow two different behaviours, 
additive or multiplicative; MALL uses 4 different connectives instead of the traditional 
2. 

• MALL is a very weak system. LL extends it using a modality, bang, written !. !A means 
that the formula A can be used as many times as needed in the proofs. This is formally 
obtained allowing the contraction and iveakening rules restricted to !-formulas. 

• Promotion, dereliction, digging are the rules that control the introduction of the modalities 
inLL. 

The rules of (the intuitionistic version of) LL are recalled in Figure 2.1. We privilege the 
intuitionistic version of such rules because we will never consider the classical ones in our 
work. An alternative formulation of LL is in Figure 2.2. Such a version is equivalent, in 
the sense that every formula provable in one system is also provable in the other system. 
Notice however that, with this second formulation, it is no longer true that "the cut is the only 
elimination nde". Indeed, the digging eliminates a symbol of modality. The soft promotion is 
also known as functorial promotion; in our work we shall always use this formulation of the 
promotion rule. 



Affine Logic. It is a version of LL that allows the use of weakening but not of contraction. 
Here, every argument has to be used at most once instead of exactly once. The price to pay is a 
longer definition of the cut elimination procedure; the more, the cut elimination procedure 
is not deterministic anymore. This is why one usually deals with the intuitionistic version of 
the affine logic. We have already faced this problem in the Introduction, talking about ILAL. 
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Figure 2.2: Another formulation of Intuitionistic Linear Logic, in a sequent calculus style, 
almost equivalent to the one in Figure 2.L (*) Provided a does not occur free in F. 



Proof nets. Together with LL, in [Gir87] are presented proof nets. For example, the (intu- 
itionistic) proof 

identity 
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promotion 
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!A, B h !A 8) B 
!A, !A, B h !A (8) B 
!A, B h !A (8) B 



identity 
(2)-right 
weakening 
contraction 



can be represented by the following (intuitionistic) proof net: 




where each rule is represented as a node of the graph. However, not all the rules can be 
represented as nodes. Some of the rules (in part, the promotion rule and the rules for additives) 
involve not only one formula, but the whole context. In order to correctly handle them, one 
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Figure 2.3: The rules of Soft Linear Logic, in a sequent calculus style. (*) Provided a does not 
occur free in F. 



has to use additional structures over the graph called boxes. They will be presented more in 
detail in Section 3.1. 

In Section 3.1 we will describe exactly the formulae and the proof nets that we will use. 
Here, we just anticipate that (i) we will deal with an affine logic, and (ii) we won't deal with 
additive connectives. 



2.4 Light logics, I LAL and SLL 

Under the Curry-Howard correspondence, the concept of complexity of programs is also a 
complexity of proofs, and a class of complexity is in fact a fragment of the (linear) logic. A light logic 
is a fragment e.g. of LL , and can be used to identify a computational class. This is a relevant 
change in perspective in the study of CC: no more Turing Machines has to be considered, but 
proofs. Of course, we said that there is a strict correspondence between proofs and A-terms, 
so a possible objection is the following: the real step forward is done passing from Turing 
machines to A-terms, and there is no real further advantage passing from A-terms to proofs. 
However, using light logics it is easy to characterize classes of proofs, while using A-calculus 
it is less easy to characterize classes of programs. 

A certain number of logical systems have already been introduced to this purpose; we 
recall in particular that both Intuitionistic Light Affine Logic (ILAL) [AR02] and Soft Linear 
Logic (SLL) [Laf04] characterize the class of polynomial time-calculable functions. 



17 



CHAPTER 2. PRELIMINARIES 



Two words are worth writing about these two systems. The rules of ILAL have already 
been reported in Figure 1.1; SLL is in Figure 2.3. The two systems are deeply different. ILAL 
is said stratified, while the multiplexor rule of SLL is inherently unstratified. A formal definition 
of stratification will be find in Section 3.3, and we don't want anticipate it here. Intuitively, 
this means that the multiplexor rule introduces a modality ("!") outside a single formula of 
a sequent, but not outside all the other formulas of the sequent. This is forbidden in ILAL, 
whose proofs are rigidly organized in levels of modalities. On the other side, I LAL poses some 
restrictions in the number of premises present in the Promotion rule. A comparison between 
ILAL and SLL can be found, e.g., in [GRV]. 

Now, we want underline some more technical aspect of ILAL. As we anticipated in the 
Introduction, the free weakening has at least two negative consequences, (a) The classical 
version of this system is non-confluent, and this is the reason why I LAL is intuitionistic, while 
LLL is not. (b) In order to normalize the proofs, a long list of reduction rules is needed, and 
the more, ILAL must contain the daemon rule (h), which makes ILAL inconsistent [AR02]. We 
underline that the rule h is only required during the reductions, and not in the real proofs, 
h is a bit like the imaginary unit: it may be needed during the computations, but it does not 
appear in the input data, nor in most of the results. 



2.5 Implicit Computational Complexity 

Light logics are part of a larger area of research called Implicit Computational Complexity 
(ICC), that tries, using different strategies, to characterize complexity classes without referring 
to Turing Machines. For example, a different approach relates to the more traditional recursion 
theory. In this perspective, a computational class must correspond to some subclass of the 
algebra of functions of Kleene. We will deal about this approach in the next sections. 

2.6 Algebras of functions, and Kleene functions 

As we already pointed out, we focus on two different traditions for representing complexity 
classes. One, is the one of light logics; the other one, is the one of algebras of functions, 
derived from the functions of Kleene. Here, we recall this second approach. 

An algebra of functions is a set of functions ^ containing some hase functions and closed 
under some operators over functions. The elements of J?l may be seen as functions, but also as 
programs that calculate them. So, we shall both talk about functions in ^ and programs in 

All this functions are first-order , in the sense that they are defined over a common ground 
set; for example, N, or N x . . . x N. We do not handle functions of functions and such things. 
Specifically, we deal with algebras of functions over the binary words W, assuming the natural 
correspondence between W and the natural numbers IN. 

The Kleene functions are the most well-known algebra of functions. This is defined as 
the smallest set of partial and first-order functions ^ from IN X ... X IN to IN such that: 

• ^ contains the constant function 0, the successor, the projections; 

• ^ is closed under Composition, Recursion, and Minimization, as described in Figure 2.4. 
There, ~x denotes a vector with n components. 
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As we already pointed out, the Kleene functions are in fact algorithms that calculate 
functions. So we may refer to them also as Kleene programs. Second observation, the 
Minimalization is the only operator that allows the construction of non-total functions. At last, 
the reason that make important such functions: 

Theorem 2.6.1 

The Kleene functions correspond exactly to the Turing-computable functions. 

In the following two Sections we will study two restrictions of the Kleene algebra that 
capture exactly the FPTIME class. The keypoints will be (i) to forbid the minimization 
schema; and (ii) to restrict the power of the recurrence schema. It will be useful the following 
terminology. Inside a recursion schema of Figure 2.4, the last argument of h is called critical 
argument. The first argument of /, that is also the first argument of h, is the recurrence 
argument, and we say that it drives the unfolding of f. 

2.7 Safe Recursion on Notation 

Safe Recursion on Notation, or SRN, also called BC, is the algebra of total and first-order 
functions over binary words recalled in Figure 2.5. The base functions are the successors, 
the predecessor, the projections and the conditional. SRN is the smallest set of functions 
containing the base functions and closed under Safe Recursion and Safe Composition. The 
key feature of SRN is the presence of two kinds of variables, called resp. normal and safe. 
Each variable can be used only in a specific way, depending on its kind. In particular, safe 
variables cannot be used as recurrence arguments. 

From an extensional point of view, the functions in SRN are exactly the functions in 
FPTIME [BC92]. On the intentional side, SRN can be seen as a programming language; 
every SRN program executes in polynomial time under a certain strategy [ ], and every 
FPTIME function has an SRN program computing it. The system SRN is inspired to the 
one of [Cob65], but it really improves this latter: the system presented by Cobham explicitly 
puts a polynomial upper bound on the recursion scheme, while in SRN such a bound is a 
consequence of the structure of the system. 

We shall often write SRN"'^ to denote the SRN functions with n normal arguments and 
s safe arguments. 

2.8 Ramified Recurrence 

Leivant's Ramified Recurrence system [Lei93] is an algebra of total and first-order functions 
with ground the tiered words W,, i e IN. All the sets W, are equal to the sets of the binary words; 
however, they must be kept disjoint, as they are used in different ways. W, is the set of words 
of sort i. The base functions are the two word successors and all the projections; the algebra 
is the smallest set of functions containing the base functions and closed by composition and 
predicative recurrence: 



f = rec[ge, go, gi ] defined by 
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Figure 2.4: The Kleene functions: Composition (2.2), Recursion (2.3) and Minimization (2.4). 
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(2.12) 




/(s/(w),^'';^^) 


= }ii{w,'x";f[w,'x";'y^y^ 


ie{0,l} 





Figure 2.5: SRN: (2.5) Successors, (2.6) Predecessor, (2.7) Projections, (2.8) Conditional, (2.9) 
Safe Composition, (2.10) Safe Recursion. (2.11) and (2.12): Linear variants of Recursion and 
Composition. 
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provided that: 

ge : ^^W„ 

go : W„,xnyxW„^W„ 

^1 : W„xWxW„^W„ 

for some "W - W,j x . . . x W,^ and m > n. The ramified recurrence hence states that the sort 
of the recurrence argument (m) must be strictly greater than the sort of the critical argument 
(n). 

These functions are exactly the functions in FPTIME. 

2.9 Relationship between light logics and algebras of functions 

At a first glance, there are similarities between ILAL and systems based on predicative 
recurrence. They all rely on a notion of stratification, i.e. distinction of objects in classes that 
can only communicate each other under particular restrictions. Moreover, in ILAL it is easy 
to encode an iteration schema similar to the recursion schema: whenever h> A \- A is {a proof 
net calculating) a function from A to itself, it is possible to find a proof net / > W, A h §A 
calculating the iterates of W = Va.!(a -o a) -ol{a -o a) -o §{a -o a) is a type that encodes 
Church words in ILAL. Notice that the output of / is not of type A, but §A, implying that / 
cannot be iterated any more. 

Following such an idea, it has been proved [MO04] that it is possible to embed a 
small fragment BC~ of SRN into ILAL. This means that it exists a map that composition- 
ally translates a program t^^;~y^^ € BC~"'^ into some proof net of ILAL, whose type is 
W, . . . , W, W, . . . , §"' W h W for some m > 0, being W as before. BC~ contains the base 

n s 

functions and it is closed under Linear Safe Recursion (2.12) and Linear Safe Composition 
(2.11). At the moment it is not known if BC~ contains all the FPTIME functions, or not. 
Surely, it does not contain all the SRN programs. 

However, it is not possible to extend this result, using the same encoding, to the whole 
SRN. This last observation, just sketched in [MO04], is quite interesting; we can generalize 
it in the following way. Let us imagine to add concat( ; x, y) among the base functions of 
SRN, with the intended semantics. We get a system SRN' that is no more poly time, because 
it contains the following function exp: 

d.\xp{w;x) = coi\caX{;n}^^{w;x),n^^^{w;x)) 
exp(0; ) = 1 
Gxp(sr<;; ) = dup(r<;; Gxp(w; )) 

Observe, in particular, that (i) in ILAL there exists a proof net representing concat( ; x, y); (ii) 
exp cannot be defined with Linear Safe Composition / Recursion, according to the fact that 
ILAL is poly time. In particular, the contraction on the safe variables needed to build dup( ; x) 
does not exist. 

We can conclude observing that ILAL is somehow orthogonal to SRN, with regard to the 
encoding of Murawski and Ong. As a consequence, if we want to embed SRN inside some 



21 



CHAPTER 2. PRELIMINARIES 



extension of ILAL, it will be necessary to slightly change the chosen encoding, or the system 
ILAL. This is exactly what we shall do. 

2.10 Relations, Orders, Preorders. 

In some Sections of Chapter 4 we will need the following, standard, notions. A binary 
relation R over elements of a set X is R c X x X. The relation is reflexive if € X{xRx); 
antireflexive if Vx £ X-<{xRx); symmetric if Va:, y e X{xRy yRx); antisymmetric if V:c, y e 
X{xRy A yRx x - y); connected or total if Va:, y £ X{xRy V yRx). 

A (partial) preorder is a reflexive and transitive relation. A (partial) order is a reflexive, 
antisymmetric and transitive relation. A linear order, or total order, is an order that is also 
cormected. Similarly one defines linear (or total) preorders. Totality implies reflexivity, so 
that a linear order is just a transitive, antisymmetric and total relation. A strict order is an 
antireflexive, antisymmetric and transitive relation. Please notice that (i) a strict order is 
not an order; (ii) it is possible to define a linear strict order, however this is necessarily not 
cormected, so to define it it is necessary to state that Vx, y e X{x ^ y — > xRy V yRx). Every 
order naturally induces a strict order. 

An equivalence is a reflexive, symmetric and transitive relation. If ~ is an equivalence, 
^ = {y6X|x~y}is the equivalence class of x, and X' = X/ ~ = {x | x e X} is the quotient 
set. 

• Every transitive relation R can be completed to a partial preorder. Just add all and only 
the couples xRx. This is the smallest partial preorder extending R. We shall use this 
fact in Section 4.4.2. 

• Given a partial preorder R over X, it induces an equivalence over X: x ~ y in X iff xRy 
and yRx. Then, R naturally induces a partial order R' over the quotient set X': 

xR'y iff xRy 

We shall use this fact in Section 4.4.3. 

• Every partial order can be extended to a linear order, but not in a unique way; in 
literature there are several algorithms for doing that. Probably we shall never use this 
fact. 

2.11 Set-theoretical notations 

In this Section we write down some of the notational conventions that are used in this work. 

• 0) is (essentially) the set of natural numbers. 2*" is (essentially) the set of real numbers. 

• Let A, B are sets. B-^ is the set of functions from AtoB. It is also denoted A ^ B. 

def 

• If / is a function, /"(A) = {f{x) \ x e A] is the image of A under /. 

• ^{A) is the power set of A. 
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• ^<a){A) is the set of finite subsets of A. 

• ^(A) is the set of multisets on A: 

B e Jt{A) i — > (B is a function, B : A ^ N) . 

We will call support of B e ^{A) the set {a € A \ B{a) i= Q] Q A. If a e A, B{a) is the 
multiplicity of fl in B. 

• -^KcoiA) is the set of finite multisets on A: 

B € < — > (B € ^(A) A B has finite support) . 

• A^'^ is the set of finite sequences of elements of A (or strings): 

A^'^ =^ {s : {0, 1, . . . , n - 1} ^ A I n £ a;} . 

We write its element this way: x e A^'^ , (xq, . . . , x^) e A^'^; e is the empty string. We use 
also the convention A* =^ A<'", A+ '^=A<'^ \ {e}. 
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Chapter 3 

The framework MS 



This Chapter is devoted to the presentation of the Multimodal Stratified framework (MS). 
As we already said, MS is a framework that allows to study a variety of different logics, all 
derived from LLand ILAL, in a uniform way; such logics will be called subsystems (Section 3.2). 
MS is described in Section 3.1, in the language of proof nets. MS, as well as all its subsystems, 
is a rewriting system [KBVOl]: in order to perform computations, it is necessary to describe a 
rewriting relation that transforms a proof net into another one. This relation is the normalization 
of proof nets, i.e., the procedure that eliminates as many cut nodes as possible inside a given 
proof net. It will be described in Section 3.3. 

The last Section 3.4 contains some more technical considerations, and the reader can 
freely skip it. In Section 3.4.1 we will compare the framework MS with the very more general 
theory of Abstract Rewriting Systems (ARS); every subsystem of MS is, in fact, an ARS. So, 
we can deduce some properties of MS from the theory of ARS. Section 3.4.2 discusses the 
definition of size of a proof net, comparing it with other possible definitions. We will find 
out that the definition we use is reasonable. At last. Section 3.4.3 shows that SLL cannot be 
compositionally embedded into any subsystem of MS. 

3.1 Meta-Proof nets and Proof nets 

We are going to define what is a proof net; we follow, essentially, the definition in [DL08]. 
However, in order to handle an arbitrary set of modalities X, we distinguish formulae and 
meta-formulae, as well as proof nets and meta-proof nets. 

Definition 3.1.1 (Meta-Formul^s; and Formula) Let us fix a countable set 'V, whose ele- 
ments will be called prepositional variables, and a countable setX, whose elements will be 
called meta-modalities. We will use a,fi, y,.. . to indicate variables and m, n, p, . . . to denote 
meta-modalities. Let us consider the meta-formulae generated by the following grammar: 

F L|M 

L a\F®F\F Sa.F 

M mF 

The set of meta-formulae with start symbol F is denoted T; meta-formulae with start symbol 
M are called modal and their set is denoted A\; and meta-formulae with start symbol L are 
linear or non-modal, and their set is 
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Figure 3.1: The nodes of the meta-proof nets, with m,m, q e X, A,B e T . 




Figure 3.2: The meta-building rules (b.r.) of MS: base cases. A € !F. 



For every iixed seilL, the formulae (with modalities in X) are obtained instantiating the 
parameters m e X with modalities m e X. The set of formulse with modahties in X is T'x- 
Formulae obtained from the modal meta-formulae are modal formulae, and their set is Mx- 
Formulae obtained from the linear meta-formulae are linear formulae, and their set is Xx- 

Notice in particular that a modal formula can be hidden inside a non-modal formula. 

We shall use letters A,B,C,... to range over formulae, or meta-formulae; and Greek letters 
r. A, O, W to range over multisets of formulae. 

We shall use the notation A \^/y\ to denote substitution of y with B in the (meta-)formula 
A. Unless explicitly stated we shall make confusion between the concepts of formula and 
occurrence of formula. There are no restrictions, in principle, on the set X; but in most of the 
cases we shall use only finite X's. 

Definition 3.1.2 (Boxed-graph) A boxed graph is a pair {Q, B), where Q is a graph, and B is 
a set of subgraphs ofQ, that are called boxes. 

A boxed graph can be drawn just as a graph, with the addition of the border of the boxes. In 
this way, we will seldom use the formal definition of boxed graph: on the contrary, we will 
draw it. 



Definition 3.1.3 (Meta-proof nets and Proof nets) A meta-proof net is a boxed graph (^, B), 
where: (i) @ is a finite directed graph, whose nodes are instances of the nodes in Figure 3.1 
and whose edges are labelled with meta-formulae in T; (ii) {Q, B) can be built inductively 
using the meta-building rules in Figure 3.2 and 3.3, in the following way. The graphs in Fig- 
ure 3.2 are meta-proof nets, with no boxes. Let us assume that the following are meta-proof 
nets: 
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^ - rzrz. 
i__n_ J 



B.r. ®« 



i__E_ J 

'1 







TC 

L n~] 
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B.r. ®x 
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B.r. cut 



Parametric B.r. Pq(TTti, . . . , mi). 



Figure 3.3: The meta-building rules (b.r.) of MS: inductive cases, m, n, q, nti, . . . , rri/t ^ 
A, B e !F. (*) a is not free in Ai, ... ,Ar. Please notice that the promotion rule is in fact a whole 
set of rules, one for each k. 
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Figure 3.4: On the left, an example of box. On the right, the same box in a more compact 
notation. 

Then, also the graphs in Figure 3.3 are meta-pr oof nets. 

For every fixed set ofmodahties X, the meta-proof nets with formulas instantiated in fx 
are called proof nets. 

Some comments are needed about our building rules. Some B.r. require that the meta- 
formulee labelling the edges have some precise form. For example, in the cut B.r., Aj — D for 
some and in the contraction A, = mA and Aj = nA for some /, /. The V.^ B.r. satisfies the 
usual requirement that x is not free in Ai, . . . , A^. All the meta-B.r. depend on X, because once 
fixed X, the formulae labelling the edges must be in T^x- But, two meta-B.r., the contraction 
and the promotion, depend on X in a deeper way. The contraction is just one meta-B.r. for 
meta-proof nets; only when instantiated, it can give origin to many B.r. for proof nets. The 
case of the promotion is slightly different; there are countably many different meta-B.r., one for 
each possible k. Once instantiated, each of them can give origin to many B.r. for proof nets. 
The premises are unordered: we consider, e.g., P,n(n,n, q), Pin(n, q,n) and P,„(q, n, n) as the 
same B.r.. Sometimes we will draw the boxes omitting their Po and Pi nodes (see Figure 3.4). 

A. 

In the case of the cut B.r., we shall use the compact notation n N E to talk about the 
resulting proof net. When no confusion is possible, we will simply write D M E. 
The terminal nodes in a proof net Tl are its o node and all its i nodes. 
We shall use letters n, E, A, to range over proof nets. 

Definition 3.1.4 (Basic Proof nets Definitions) If TL is a proof net or a meta-proof net: 

• Vn denotes the set of its nodes; 

• Eu is the set of its edges; 

• Byi is the set of its Po nodes (we shall often refer to the Po nodes as the boxes ofTL); 

• an : V'n — > {i, o. Pi, Po, ®£, ...} is the function associating each node with its kind; 

• |Sn : £n — > T'x is the function labelling edges of IT with formulas; 

• ifx is a Pi node, it lies on the border of a box ho{x) e Bn; 

• Pn : Bn — > N is the function telling how many premises has a box; 

def 

• boundary(n) = {v eVn\ aniv) e {i, o}}. 

Definition 3.1.5 (Principal and Secondary Inputs and Outputs) Letv be a node -o£ and u 
be a node -o^ as in figures: 
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The edge labelled C -o D is the principal input ofv and the edge labelled C is the secondary 
(or auxiliary) input of v. The edge labelled A -o B is the principal output of u, the edge 
labelled A is the secondary (or auxiliary) output of m. 
We call also reverse edge of u its secondary output. 

Remark 3.1.6 Every proof net has a single conclusion: the system is intuitionistic. 

Remark 3.1.7 Inside a proof net 11, boxes are in bijection with Po nodes. 

Definition 3.1.8 (Sequent Associated to a Proof net) If H is a proof net with premises T 
and conclusion C, we write 

n>r h C 

and we sayY h C is the sequent associated to 11^ or fhaf 11 proves. 

The latter definition is suggested by the usual correspondence between proof nets and 
sequent calculus. 

h nodes and the h B.r. come directly from I LAL. They are necessary in handling reductions 
of free weakenings, but they have not a meaningful corresponding rule in sequent calculus. 
Finally: 

Definition 3.1.9 MS is the set of all the meta-building rules. We will use labels that recall 
the names of the B.r: 

MS = {I, cut, h, W, (8)^, Vx, V^^, Yq(m, n)) U {P^{mi, . . . , m^) | /c € N} 

For each X, 25x is the set of the building rules of MS instantiated with modalities in X. 
PN(23x) is the set of the proof nets built with the B.r. in 23x. 

»x = {I, cut, h, W, <g)«, -0£, -on, Vx, ^k} U 

{Yc,(m, n) I m, n, q e X} U {Pq(mi, . . . , m^) | e N, q, mi, . . . , ntfc e X} 

We will call linear kernel the set of all the non-modal B.r in Sx- 

X = {I, cut, h, W, <S>x, ^K, -^£, ^n, Vx/ "^n] 

Measures. We can now define the following measures on the proof nets. 
We shall use letters x, y, z, . . . to range over elements of Vu U £n- 

Definition 3.1.10 Let 11 be a proof net. For every x e Vu U £n we define d{x), the depth (or 
level) of x: 

• Ifx e Vu, dix) is the maximum number of (nested) boxes that contain x. 

• Ifx = {u,v) e En, d{x) = max{d{u),d{v)}. 

def 

The depth of 11 is d{Yl) = maxiye^n d{w). 
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In particular, if m is a Pi or Po node, its depth is computed as ii were outside the box it is on 
the border of. 

Definition 3.1.11 We denote the set of nodes at deptd of IT. Similarly for and B^. 
Remark 3.1.12 The terminal nodes only occur at level of IT and P-nodes only at level 

d < din). 

Definition 3.1.13 Let 11 be a proof net. 

• Its size is 

|n| = # {nodes in Yl, at every depth} . 

• IfO<d< d{n), the size at level dofU is 

\TL\^ - # {nodes in 11, at depth d} 

This way, 

in|= Yj I^I''- 

o<d<d(n) 

We count every terminal node, every Pz-node and every Po-node as part of the size, for 
they are part of our syntax. Lemma 3.4.4 and remark 3.4.5 will show that we could, in fact, 
harmlessly ignore them. 

Definition 3.1.14 IfYl is a proof net and < d < d(YT), bdiTl) is the number of boxes at level 
d. 

Namely, this is the number of Po nodes. In particular fo^(n)(n) = 0. 
Lemma 3.1 .15 (Basic Relations between Measures) 

For every proof net n and for every < d < d{n), bd{U) < \n\d and b^iU) < |n|d+i. 

Proof. The first relation is trivial. For the second one, notice that every box contains at least 
one node. □ 

Figure 3.5 gives an example. In that proof net, d(Yl) = 2, |n|o = 13, |n|i = 5 (remember 
that Pi and Po nodes are considered outside their box), |n|2 = 1, and so |n| = 22. The boxes 
are: bo{n) = 3, fci(n) = 1, b2(n) = 0. 

Structure of proof nets. In order to prove Lemma 3.1.18, about the structure of the proof 
nets, we need to introduce the notion of serialization of a proof net, i.e. the sequence of B.r. 
that make a proof net. 

Definition 3.1.16 (Serialization) LetYlbe aproofnet. By definition, Yl is built by a sequence 
of building rules (Rq, ... , R^). We say that {Rq, ... , R]^) is a serialization of n. 

Every proof net may have more than one serialization. 
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Figure 3.5: An example of proof net. 

Definition 3.1.17 (Left and Right Nodes) We call right nodes the nodes ^-r, -o^, V.?^; left 
nodes the nodes (8)£, -o£, V^, W, Y. 

Lemma 3.1 .18 (Structure of Cut-Free Proof nets) 

Let n a proof net of MS without any cut node at level 0. We can draw the level of n in a 
way such that: 

1 . all identity, h and W node and every box lie on a single horizontal line; 

2. all right nodes lie over that line; 

3. all left nodes lie below that line; 

4. the output node is on the top; 

5. all the input nodes are on the bottom; 

6. all edges, except for reverse edges and for secondary outputs of nodes, are directed 
upward. 

However, this is not the way we usually draw proof nets: we find easier to draw the 
secondary inputs of -<>£ nodes from bottom to top too. 

Proof, n is built up thanks to a serialization (Rq, Ri, ... , Rn)', it's easy to prove the statement 
by induction on n, just looking back at the building rules of definition 3.1.3. □ 



Subnets and Modules. In our work we shall use often the notion of module, i.e. a piece of 
a proof net. 

Definition 3.1.19 (Modules Generated) ^ Let 11 be a proof net. Let us consider a subset 
^Terminology comes from [DR89] 
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Figure 3.6: On the left, a proof net Yl. On the right, the module generated by {u, v). 

V c Vu- The module Z, of IT generated by V is a boxed graph defined as follows. 

• All nodes in V are in V^- 

• IfveV, a{v) € {Po,Pi}, then L is the whole boxho{v). 

• Ifu,veV and (u, v) e En, then (u, v) e Ej:. 

• If u e V, V ^ V and (u, v) e En, then there exists an output node w e Vz, and an edge 
{u,w) € Ej:. 

• If u e V, V i V and {v,u) e Ejj, then there exists an input node w e and an edge 
{w,u) € Ez. 

Definition 3.1.20 (Modules) We call module a boxed graph L if there exist TL and V c 
such that L is the module of IT generated by V. 

An example is given in Figure 3.6. For each module E of n there exists a canonical 
injection ij: : (yi:\boundary(L)) Vu- When no confusion arises, if v e Vj: we will write 

V € Vyi meaning that zeC^) £ ^n- Notice that a module is not necessarily connected. 

Remark 3.1.21 (Of Notational Nature) We shall use the notation n>r I- A meaning that 
the module Yl has premises labelled with F and conclusions labelled with A. If n>F, O h A 
and E > F' h O, A' are two modules, IT N E > F, F' h A, A' is the module obtained connecting IT 
and E through cut nodes, provided it is still a module. On the contrary, IT ® E > F, F' h A, A' 
is the module obtained connecting n and E just by edges, provided it is still a module. 

Definition 3.1.22 (Subnets) A subnet of FI is a module of 11 that is also a proof net. 

Environment subnets, surface graphs, paths. In this work, two notions of path will be 
defined. Fhe first one, here below, is similar to the standard notion of graph-theoretical 
path. Fhe other one relates with a dynamical interpretation of the proof nets, and will be 
presented in Section 4.3.1. Environment Subnets and Surface Graphs are objects required to 
define graph-theoretical paths in a simple way. 

Definition 3.1.23 Let us consider a proof netll and Jet E be a module ofYl. The environment 
subnet of E is the largest proof net contained in the innermost box containing E, if it exists; 
it is n otherwise. 



32 



3.2. SUBSYSTEMS 



This is also the largest subnet containing E and containing only nodes of depth ^(x). 
In the following, if G is a graph, we use notation Vq (resp. Eq) for the set of nodes (resp. 
edges) of G. 

Definition 3.1.24 Let D be a proof net and ILbe a module ofH. Let & be the environment 
subnet of E. The surface graph Ge generated by E is a directed graph such that 

1 . The nodes of Gz are the nodes at least depth in @ different from Pi. 

2. For {u, v) e E@ with least depth, and a{v) ^ Pi, (u, v) e Ec^. 

3. For {u, v) € E@ with least depth, and a{v) = Pi, {u, ho{v)) e Eq^ . 

4. No other edges are in G^. 

def 

The surface graph of U is Gjj = Gix] where x is any node at level OinU. 

Definition 3.1.25 Let n be a proof net, and x,y e Vjj U £n within the same environment 
graph. A (directed) graph-theoretic path t from xtoy is a (directed) path from xtoy in G[x], 
that is a finite sequence 

T =^(xo,xi,...,x„) e Vu 

such that (xi, Xi+i) e Eu, xq = x and x„ = y. 

Undirected graph-theoretic paths are defined in similar way. 

3.2 Subsystems 

We have defined what are MS and 83x for every X. As anticipated, we are goiag to define a 
family of light logics that are called subsystems of MS. 

Definition 3.2.1 For every fixed setX, a subsystem P of is a subset of ^x- PN(^) is the 

set of proof nets definable with the rules in V. 

A subsystem of MS is a subsystem of some 23x- 

Remark 3.2.2 (On the Used Terminology) We shall often refer to the elements of PN(f ) as 
the proof nets of P, and we shall say that P allows a rule R whenever Re P. 

E.g. P = {(8)£,I,Yq(nt,n),P,n(m,m)} and S = {(8)x,I,Y„i(m,n),Pn,(m),Pn,(n,q)} are two 
different sets of construction rules. Please notice that Sx is, in fact, the largest subsystem of 
23x. We adopt the following convention. We shall write PmCr' , ft) to denote the set of the 2 
rules PmCr, it) and Pm(n); and Pm(r*, it) to denote the infinite set of rules {Pin(r, . . . , r, ft) | > 0}. 

k 

Definition 3.2.3 Let P be a subsystem. We say it is downward closed iff whenever P 
has Pm(iTii/ • ■ • / iTtit)/ It has also all the rules Pmi^i^, for every sublist (m/j, ...,m^) of 

(mi,...,mfc). 

For example, a subsystem without promotion rules is trivially downward closed. 

Definition 3.2.4 Let X be the smallest set such that P c 93x. We say that the number of 
modalities ofP is#X. 
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In particular, whenever !P c 23x/ "P has at mosf #X modalities. 
We will be interested in a particular class of subsystems: 

Definition 3.2.5 P c 23x is a sensible subsystem if; 

1. X is finite. 

2. V contains identity, cut and weakening. 

3. Either % — ^,or'P contains at least one among -o.^ and h. 

4. For every modality n € X, P contains the closed box PnO- 

5. P is downward closed. 

"Sensible" shortens computationally sensible subsystems, where we can erase/duplicate all 
the structure we might need when writing proof nets-as-programs. Sensible subsystems will 
be relevant thanks to Proposition 4.3.40. Notice that, even if a subsystem f allows a rule R, in 
general we are not sure that R can be really used inside some proof net. Think for example to 
P - {I, P,n(n, q)): a promotion rule with 2 premises cannot be used in any proof net of PN('P). 
If P is sensible, at least all its closed promotion rules can be really used: 

Fact 3.2.6 (About the Definition of Subsystem) 

Point 3. in tine Definition 3.2.5 can be equivalently replaced by tine following: 

3bis. "For every n, the promotion rule P„() can be used inside some proof net of PN(!P)." 

3.3 Normalization 

Following the tradition of light logics, we are going to define a procedure of normalization for 
the proof nets of MS. In Section 3.1 we have distinguished meta-proof nets and proof nets. 
Here, similarly, we distinguish between meta-normalization steps and normalization steps. The 
meta-ns reduce meta-proof nets, while the ns reduce proof nets of every 33x. Then, we will 
define also a normalization procedure for all the subsystems P of 23x, restricting ad hoc the 
normalization of 23x- 

The normalization tries to erase as many cuts as possible. For every X, we shall see 
that 23x (recall: 23x is a subsystem of 23x0 enjoys the cut-elimination property: it is possible 
to normalize a proof net arriving to another proof net cut-free (Corollary 3.3.13). This 
property does not hold, in general, for the subsystems of 23x. This is why we adopt the term 
normalization instead of the more traditional term cut-elimination. 

Definition 3.3.1 We will call meta-normalization steps (or meta-ns) of MS all the rewriting 
rules in Figures 3.7, 3.8, 3.9, 3.10. The left side of a rule is the redex, the right-hand side is 
the reduct. 

For every fixed set X, a normalization step (or ns) is a meta-ns with formulae instantiated 
in "Fx- '^(23x) is the set of such ns. 

Every ns has a name (e.g. \S'rI^ £\ [W/P], . . . ). 

Definition 3.3.2 For every fixed X, a normalization strategy a is a function that takes a 
proof net of and tells which cut eliminating. Formally, a : PN(23x) PN(23x), such that 
(i) n — > a(n) or a(n) = n, and (ii) if there is a reducible cut in Yl then o{YT) + 11. 

Notice we do not require this function to be computable. We shall use letters a, t for 
strategies. 
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Figure 3.7: Linear meta-ns. [V^/V^] substitutes B for a in the whole proof net rooted at V«. 
We do not explicitly write the sceheme [_/I] because analogous to [I/_]. 

In particular: 

Definition 3.3.3 The closed normalization strategy requires that an instance of the modal 
cuts ([P/P] and [P/ Y] j can be reduced only if the lowermost box they involve is closed. 



Definition 3.3.4 (Notations) 



If the proof net H rewrites to E in a single ns, we write 



• The transitive closure of^ will be denoted — >*. 

• n E iffn E in exactly n steps. 

• n — E iff n E using the strategy a. 

• n -^a E iffn E reducing a cut node at level d. 

• n — >s E iffn — > E is a ns with name S. 

• Combinations of the previous symbols shall be used. 

Definition 3.3.5 A proof net Tl is in normal form according to a strategy o iffo(Yl) - Yl. A 
proof net is in normal form if it is in formal form according every possible strategy. 

Definition 3.3.6 We will call normalization (resp. a-normalization) of a proof net n a 

sequence of proof nets 

(n = no,ni,...,n„) 

where Ui+i (resp. D; -^j Tli+i), and such that n„ is in normal form. 



Lemma 3.3.7 (Stability under Reduction) 

Applying a ns to a meta-proof net leads to another meta-proof net. Applying a ns to a proof 
net of leads to another proof net of SBx- 
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[P„(mi,...,m,,)/Y,,(n,m)] 



Figure 3.8: Meta-ns involving boxes. [Pq(r)/Yq(n, m)] can generate a whole set of ns according 
to instances of the parameters r and s. 



Proof. The second statement is a consequence of the first one. So we prove just the first one. 
Given a meta-proof net H and one of its cuts u, the elimination of u using a single ns leads to 
another boxed graph TV . We want to show W is a meta-proof net. 

The following is not a proof by induction; however it relies on the inductive definition of 
proof net. 

We will not prove the thesis for all possible cuts, just a relevant one. 
Let us consider u a cut [-o^ / -o^]. n has been built, by definition, using some sequence 
of construction rules R^, as in Figure 3.11. 

Note that we don't know exactly the order of application of these rules; however e.g. 
needs to come after R^ and because Ei and L2 need to exist. 

Now, let us apply our ns to the cut c. We get a new boxed graph IT', which is essentially 
the same as IT: in particular, proof nets Ai, A2, A3 are unchanged. However, rules R^, R^ 
are not applied: they are replaced by two cut rules, that create a proof net Y! with the same 
inputs and outputs of E. At last, all the nodes added by rules R^ are unchanged. So, IT can 
be built by the rules in Figure 3.12. This shows that also IT' in built using construction 
rules, and so it is a proof net. 



All other ns are proved similarly. 



□ 
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Figure 3.9: Meta-ns involving W. 




Figure 3.10: Meta-ns involving h. 



Note in particular that this proof is, essentially, a proof of stability of the secjuentialization 
of a given proof net n. This different from the standard, and more elegant, proof that uses 
some correcteness criterion for proof nets. The reason is that, at the moment, we do not have 
any working correctness criterion for our proof nets. 
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Figure 3.11: Proof of Stability Lemma. 
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where rules R^ are the same rules R^ applied to a different proof net. 



Figure 3.12: Proof of Stability Lemma. 
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Subsystems and normalization. We have already seen that 23x is a rewriting system en- 
dowed with all ns in !R(23x), that are the instances of the meta-ns. Now, what about the 
subsystems? Notice that it is possible that n € PNCP) c PN(23x), £ € PN(93x), ^ i PNCP), 
and n ^ E in 23x- So, we state that each subsystem V c 23x is a rewriting system endowed with 
all and only the ns ofRi^x) ihdi map proof nets ofP to proof nets ofP. We shall call 'R{'P) c !/?(23x) 
the set of such rules; please notice that !/?('P) is well-defined (i.e. unique). 
Every subsystem is in fact a rewriting systems, see Section 3.4.1. 

In this Section we will prove that each 'P: (i) is strongly normalizing (Proposition 3.3.11), 
but (ii) in general, is not Church-Rosser (Lemma 3.3.14). 

Lifts and Residues. 

Definition 3.3.8 (Lifts and Residues of Nodes) Let H ^ 11'. There is a natural map from 
Vw toVu- We ca]] iflift, denoted Lift. Observe that more than one node ofTL' can be mapped 
to the same node ofYl. We call residue ofu e Vu all the nodes whose lift is u: 

Res(u) = Lift"\{u}) c yn'. 

The definition can be generalized to O Yl'; in this case we denote Res[{ (w) the set of 
residues of w in 11'. 

Note in particular that a node can have no residue, if it disappears after reduction; on the 
contrary a single cut node can have more that one residue. 

Note moreover that an h node can be a residue of a W node, and vice versa. 

Stratification. 

Definition 3.3.9 A subsystem of MS is stratified if the rewriting rules assure that the depth 
of each node u e Vu different from a cut and the depth of every node v e Res}^ (w) coincide. 

Of course, it is still possible that a node disappears during reduction. 
Note in particular that the depth of a stratified proof net cannot increase. 

Lemma 3.3.10 (Stratification in MS) 
Every subsystem ^ c ^x is stratified. 

Proof. Just look at the rewriting rules in Figures 3.7, 3.8, 3.9, 3.10. □ 

By the way, if we had considered also the cut nodes in the Definition 3.3.9, this result 
would be false: consider e.g. the [P/P] reduction. 

Basic properties of subsystems. 
Proposition 3.3.1 1 (Elementary Upper Bound) 

For each d € N there exists an elementary function ed{n) that bounds the reduction time of 
all the proof nets n e PN(5Bx) with depth d and size n. 

Vice versa, for every elementary function e{n) there exists a depth d and sequence of 
proof nets 11,, e PN(©x) such that every n„ reduces in time > e{n). 
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Proof. We can embed 23x in lEAL just collapsing all the modalities n into !. It is well-known 
that lEAL reduces in elementary time. 

Vice versa, it's clear that every lEAL proof can be encoded in 33x, using a particular 
modality m instead of !. So 23x is at least as expressive as lEAL. □ 

Corollary 3.3.12 (Termination) 

Every normalization terminates in a finite number of steps. 

Corollary 3.3.13 (Cut-elimination) 

Tile subsystem Sxenjoys tine cut-elimination property. 

Proof. Every cut can be reduced, using the ns of 23x- Corollary 3.3.12 tells that every 
normalization eventually terminates; hence the normal form must be cut-free. □ 

On the contrary, Church-Rosser confluence property does not hold: 
Lemma 3.3.14 (Non-Determinism in Normalization) 

There are proof nets L, Ui, 112 such that L ^* Ui, L ^* U2, and Hi and U2 are two different 
proof nets in normal form. 

This is due to non-determinism in [Y/P] ns. 

3.4 Technical considerations 
3.4.1 Abstract Rewriting Systems 

Here we will recall the definition of Abstract Rewriting System (ARS) from [Klo92, KBVOl]. 
Each subsystem P is in fact an instance of ARS. So, some (few) theorems holding for a generic 
ARS also hold for P. We underline that, in literature, terms rewriting systems (TRS) are more 
widely used than ARS. TRS are a particular case of ARS, whose objects are terms; but each 
is not a TRS, because its objects are proof nets instead of terms. 

Definition 3.4.1 An Abstract Rewriting System (or ARS) is an algebraic structure £/ — 
{A, — >) where A is a set and — > is a binary relation over A. -» is the transitive and reflexive 
closure o{—>. <— is the inverse relation of<^. «- the transitive and reflexive closure of = 
is the convertibility relation: it is the smallest equivalence relation containing a e A is a 
normal form (n.f.) if there is no b such that a ^ b. a is a n.f. ofb if a is a n.f. and b^ a. 

(WCR) £^ is weakly Church Rosser if Va, fo, c £ A (c <— fl ^ b 3d e A (c ^ d «- fo)) . 

(CR) is Church Rosser if Vfl, c € A (c «- a -» b => 3d £ A (c ^ cf «- fo)) . 

(WN) i2/ is weakly normalizing if every a e A has a n.f 

(SN) £/ is strongly normalizing if every reduction Uq —> Ui —> . . . eventually terminates. 
• £/ is complete if it is SN and CR. 

(NF) £/ has the normal form property if Vfl, beA,aisa n.f. and a = b implies b^a. 
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(UN) £/ has the unique normal form property if Vfl, b e A, a,b are n.f. and a = b implies 
a - b. 

(FB) £/ is finitely branching if Vfl € A there exist at most a finite number ofbeA such that 
a ^ b. 

If£/^ {A, -^a) and ^ = {B, -^b) are two ARS such that A c B, then: 

• ^ is a conservative extension of^/ if^a,a' 6 A (fl -^^ -^b d')- 

• £/ is a substructure of ^ if, moreover, "ia e A'ib eB{a -^b b ^ b e A). 

The following is proved as Theorem 1.0.7 in [Klo92]: 

Theorem 3.4.2 (Basic Properties of ARS) 

1. CR ^ WCR. 

2. SN ^ WN. 

3. CR ^ NF ^ UN. 

4. SN + WCR^CR. 

5. UN + WN ^ CR. 

Now, we apply the previous definitions and theorems to our subsystems. For every fixed 
X, the structure =c/ = <PN(»x), ^) is an ARS. If X is finite, such ARS is FB; indeed, every 
proof net has a finite number of cuts, and each of them can reduce in a finite number of ways, 
being X finite. Moreover, si/ is SN (Corollary 3.3.12), but it is not WCR (Lemma 3.3.14), so 
neither CR. 

For every 'P c 23x/ the structure 3S - (PN('P), — >) is an ARS, too. £/ is a conservative 
extension of ^} however, ^ is not in general a substructure of £/, because it is possible that 
n e PN(lP) reduces - in »x - to some IT' ^ PNCP). ^ is FB and SN (properties inherited by 
23x), but not in general WCR. Theorem 3.4.2 implies that whenever ^ is WCR it is also CR, 
and so it is also NF and UN. Summing up: 

Corollary 3.4.3 (Basic Properties of Subsystems) 

For every P c 23x, the structure ^ = (PNCP), ^) is an ARS. ^ is SN. ^ is WCR if and only 
if it is CR; and if it is WCR it is also NF and UN. If X is finite, ^ is FB. 

This property wiU be used in Section 5.2. 
3.4.2 The definition of Size 

In Section 3.1 we have defined the size of a proof net Yl as the number |n| of nodes appearing in 
it. This definition, apparently trivial, hides in fact some important issues, (i) All the premises 
of a promotion box contribute to |n|; but in fact the promotion is one single rule, both in 
the sequent calculus or in the natural deduction formalisms. Similarly, the size includes also 
the terminal nodes, i.e. premises and conclusion of the proof net, that do not correspond to 
any logical rule. We will prove that the premises of the box contribute to square the size 
of n, that is: if N is the number of nodes in n different from a Pi node or a terminal node, 
then |n| = O (n^) (Lemma 3.4.4). As a consequence, since we are only interested in the 
polynomial time, the two definitions are equivalently good, (ii) |n| does not consider the size 
of the formulae appearing as label of Yl. This is quite common in literature [AR02, Laf04]; 
and indeed there is a deep reason in this choice. For example, in either ILAL or SLL, if 
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we count also the time required to change the formula of IT, the reduction of Yl cannot be 
performed in polytime. Anyway we shall see that the size of the formulee has an impact only 
over subsystems that allow the second order quantification (Lemma 3.4.7 and 3.4.8). (iii) The 
Computational Complexity is traditionally formulated in terms of Turing machines. What 
is the relationship between |n| and the number of bits required to encode Yl on the tape of a 
Turing machine? We will see that this last number is polynomial in |n|. 

Lemma 3.4.4 (Size and Terminal Nodes) 

Given a net n, let s be its size, d its deptli, Tits size witliout counting tine terminal nodes, and 
s'its size without any terminal node and any Pi node at any depth. Then 



Proof. Let us call ^(n) the number of non-terminal nodes (including boxes) of Yl at level 
0; t{Yl) the number of terminal nodes (of course at level 0); N{YT) — s the number of non- 
terminal nodes at any depth; and r(n) the number of terminal nodes and Pi nodes, at any 
depth. n{U) + t{Yl) = \U\o while N{U) + T{U) = |n|, and?= |n| - f(n). 
We show by induction on d that f(n) < 3N{Yl). 

(i) lfd-0, there are no boxes; so each non-terminal node is connected to at most 3 nodes; 
and each terminal node is connected to some non-terminal node; so t{Yl) < 3N{Yl). 

(ii) Let d > 0, and B — bo{Yl). Inside the B boxes we find B subnets, which we can call 
Til, . . . , YIb, whose depth is less than d. We can consider the Pi nodes at level 1 as the 
terminal nodes of ITi, . . . , TIb. Now, N{Yl) - N{Yli) + . . . + N{YIb) + n{Yl). Following the 
argument for the base-case. 



This shows that f(n) < 3N(n) = 3s, and s - s + t{Yl) - 0(s}. Now, we have to study T instead 
of t. Again, by induction: 

(i) If ^ = 0, r(n) = tiYi) < 3N(n) = 3 • i • n{u). 

(ii) If ,9 > 0, 



s = 0(s); 



s 



0(5-?) = 0p). 



t{u) < 3(n(n)) + f(ni) + . . . + i(nB) 

< 3n(n) + 3N(ni) + ... + 3N(nB) 

< 3N(n). 



by inductive hypothesis 



r(n) = T(ni) + . 



. + r(nB) + f(n) 

NiYli) + ... + 3- (3-2) -NiYlB) + 3N (Yl) 
N{Yl) 



< 3-{d-2) 

< 3-{d-l) 
= 3-{d-l) 



s. 



And so s = N{Yl) + T(Yl) = O (<9 • s). 



□ 
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Remark 3.4.5 (About Our Theorems) The reason why we have proved Lemma 3.4.4 is that 
we were initially worried whether the theorems that we will prove in Chapter 4, and in 
particular the Polynomiality Criterion 4.3.40, could not hold if we change the definition of 
size according to Lemma 3.4.4. The answer is yes, they still hold; the point is to use larger 
polynomials. 



On the size of the formulae. Let us move to the second question: what about the size of 
the formulee? 

Definition 3.4.6 We suppose that a binary coding for formulas has been declared, and the 
lengths of the formulse are calculated in bits. Given a proof net TL of MS, we will call y{Yl) 
the maximum length of formulas appearing on edges of IT. 

Lemma 3.4.7 

If n is a net of MS, without any V nodes. Then y{n) cannot increase during reduction. 

Proof. Just look back at the ns: sometimes formulas disappear, sometimes mA is replaced by 
nA, but the size of formulas does not increase. □ 



Lemma 3.4.8 

Let X be fixed, and n,n' e PN(»x), such that n ^ n'. Then yiW) < y{nf. 

Proof. The heavier case is that of \S zl^n}- Let us imagine we are eliminating the following 
cut of n: 



-1- 

I _E_ I 

I Cut I 




In this case we have to change all the labels x in IT with another formula B, which could 
be larger. B is at most y{@) < 7(n) long; and all other formulse in © can contain at most 
y(©) < y(n) occurrences of x; so y{TL') < yiTL)^. □ 

So, if n has 0(n) cuts of kind [Vx/V^/^], and they all are eliminable, after the reduction 

y(n') < y{ur"' 

and n' will require an exponential number of bits to be completely encoded. This is why we 
will accept the tradition to ignore the length of the formulae when encoding a proof net. 
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Relationship with Turing machines. In this last paragraph, we compare the size of a proof 
net with the size of an encoding of the same proof net on the tape of a Turing machine. A 
proof net n is compounded of: 

• A graph Vu of |n| nodes and at most 3|n| edges: it can be encoded using an adiacency 
matrix (\Ylf bits) or an incidence matrix (< 3|n|^ bits), or a list of edges as couple of nodes 

(< 3|n|-2iog(|n|)bits). 

• Some additional boxes, which are identified by their nodes: 0(|n|) nodes per each box, so 
O (PI -log (PI)) bits. 

• A label for each node, chosen among 15 different shapes: 4 • |n| bits. 

• A label for each edge, which is an arbitrarily long formula. We can decide to ignore them, 
or to encode them using at most 0{y{Yl)) bits each, and O (|n| • y{Yl)) bits all. 

So, without labels, the proof net can be codified by O (|n| • log (|n|)) bits, and with labels 
O (|n| • log (|n|) + |n| • yiH)) bits, it follows that |n| is a good choice for the complexity of the 
graph. 

3.4.3 Why SLL is not a subsystem of MS 

SLL, the Soft Linear Logic of [ ]/ is a polytime logic derived from LL. It has been briefly 
recalled in Section 2.4; it has the additive and multiplicative rules of LL, plus the exponential 
rules reported in Figure 2.3, in a sequent calculus style. Our original target was the immersion 
of SLL into MS. That is, we wanted to find some subsystem !P c MS and a compositional 
embedding from proof nets of SLL into proof nets of !P, such that every reduction in SLL 
corresponds to a reduction in P, too. Notice that this target would be interesting, because 
SLL is not a stratified system, as it has the multiplexor rule. 

The idea was the following. Take a proof net IT of SLL. Some new boxes have to be added 
to IT; each multiplexor in IT with n = 2 premises has to be transformed in a contraction, plus 
two !-premises of some new box; if n > 2 the multiplexor will be replaced with an ad hoc 
number of contractions; if n = 1 the multiplexor (or dereliction) has to be transformed into a 
!-premise of some new box. 

However this is not possible, as the example in Figure 3.13 shows. The reader can try to 
add some new boxes to this proof net; he will see that, if any box passes trough the lower 
dereliction, then the two formulas labelling the premises of the lower multiplexor will be 
different. 

On the other side, it is possible to write SLL as a stratified system, allowing a more 
liberalized use of the modalities; see e.g. [uiw ]. We will return on this topic in Section 8.2.2. 
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Chapter 4 

Polynomiality in MS 



In this Chapter we study PMS, the class of the subsystems of MS whose reductions are 
performed in polynomial time. A formal definition of polynomiality is given in Section 4.1. 
All the subsystems of MS are stratified; thus, we will begin our study generalizing the proof 
of strong polynomial time of ILAL (Section 4.2). 

Then, we will provide some conditions that make a subsystem polytime or not polytime. 
These theorems are divided in two Sections: 4.3 and 4.4. The first one contains some 
"semantical" criteria for polynomial time, while the second one moves towards the more 
"syntactical" criteria. "Semantical" here means that they rely on the context semantics of the 
proof nets; while the "syntactical" criteria recognize the polynomiality of a subsystem "just 
looking at its rules". 

The first criterion of the Chapter is Proposition 4.3.40. It tells that a sensible subsystem 
P is polytime if and only if its rules do not allow the construction of a dangerous spindle. 
The statement requires some definitions. We recall that a subsystem is sensible if it contains 
a minimum amount of rules, needed for basic programming (Definition 3.2.5). A spindle 
and a dangerous spindle are geometrical configurations that may occur inside proof nets 
(Definition 4.3.26 and Figure 4.4a). The notion of spindle relies on context semantics (CS); 
so in Section 4.3.1 and 4.3.2 we will recall the basics of CS. The Criterion is then proved in 
Section 4.3.3. 

After that, we will find out some more properties equivalent to the Criterion. In particular. 
Proposition 4.4.5 tells that a subsystem "P is polytime if and only if its augmented subsystem 
SCP) contains some specific rules. S^P) is defined as an extension of 'P containing certain rules 
derivable in P. Similarly, Proposition 4.4.15 assures that a subsystem is polytime if it does 
not contain certain rules, described by means of a relation among modalities . Another 
interesting result (Lemma 4.4.13) says that the question "Is V polytime?" is decidable, at least 
in most of the practical cases. It should be clear that these last theorems do not mention at all 
the CS. Figure 4.1 here below summarizes the main results of Sections 4.3 and 4.4. Beware 
that the results recalled in the Figure require a number of definitions that the reader can find 
in the appropriate Sections. 

At last, in Section 4.5 we adapt (some of) the previous theorem to some non-sensible sys- 
tem. We are interested in particular in subsystems that use an infinite number of modalities, 
as we think that they are very natural in a theoretical perspective. 
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Let c 33x- Let us assume that every chain of spindles 
that can be built in 'P cannot have more than L spindles, 
for some constant L e N. Then P is strongly polytime. 
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Let P c iSx sensible, with M modalities. The following 
are equivalent: 

1. 'P is polytime. 

2. P cannot build any dangerous chain of spindles. 

3. P cannot build any dangerous spindle. 

4. P cannot build any chain (neither if not dangerous!) 
of more than M spindles. 
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If !P c 23x enjoys strong determinacy, then it is polytime. 
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Let P c 23x be a sensible system. Then P is not poly- 
time iff its augmented system S{P) has the two rules 
Pc,(r, 5) and Yq(r, s), for some value of the parameters. 
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Let 'P be a sensible subsystem with M modalities. Then 
P e PMS iff 91» is a strict partial order. 
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T pt ^ Hp Pi spnsiHlp miHsvstpm ^ has a Hanp'pr- 
ous chain of spindles iff there exist in, n, q such that 
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Let P c 23x be sensible. IP is polytime if and only if, 
for every 6 elements qi = c\2 = Xi = X2 = = ^i, i.e. all 
equivalent under JJ-f, P does not contain both Yqj (rj, Si) 
and Pq2(i"2/S2). 


4.4.32 
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Let P c 33x be any sensible subsystem. Then, P is 
polytime iff 'P c Q for some Q c 23% maximal. 



Figure 4.1: Summa of the results contained in this Chapter. 

4.1 Polynomial time and size 

Definition 4.1.1 (Reduction Time and Used Size of proof net.) Let 11 be a proof net. 

def 

• Its reduction time is [n] = max{n | 11 L}. The notion canbe made relative to a strategy 
a: [n],, ='^max{n | n -^l E), and to every level d < d{n): [uf =^max{n | n E}. 

def 

• Its used size is \\Yl\\ = max{|E| | 11 — >* E). The notion can be made relative to a strategy 

a: ||n||/= max{|E| | n E}, to a level d < diU): ||n||'^ =^max{|E| | n E}, and to 

the combination of two levels i,] such that i < j < d{Yl): ||n||| '^^max{|E|, | 11 E). 

Specifically, ||n||| is the maximal used size at level i, when every reduction step occurs at 
level j. 

Definition 4.1.2 (Weak AND Strong PoLYSTEP Systems) P is weakly polystep iff for every 
d € IN there exists a polynomial prf(n) and a strategy a such that for every 11 6 PN('P), 
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[U], < pd{\n\). 

P is (strongly) polystep iff for every d elN there exists a polynomial prf(n) such that for every 

n € PN(n [n] < pdim. 

Definition 4.1.3 (Weak AND Strong PoLYSizE Systems) !P is weakly polysize iff for every 
d € N there exists a polynomial pd{n) and a strategy o such that for every Yl e PN(!P), 

ipiu < Pdim. 

V is (strongly) polysize iff for every d 6 IN there exists a polynomial pd{n) such that for every 

n € PN(n linil < Pdim)- 

Definition 4.1.4 (Weak and Strong Polytime Systems) f is (strongly) polytime iff it is both 
strongly polystep and strongly polysize. 

V is weakly polytime iff it is both weakly polystep and weakly polysize, under the same 
strategy o. 

Remark 4.1.5 (About Definition of Polytime Systems) Our definition of po/yh'me system needs 
some comments. Why is it necessary to consider different polynomials Pd{n) when depth 
changes? Let us consider two alternative definitions, each one based on the attempt to use 
one only polynomial: 

1. !P is weakly polynomial iff there exists a strategy o and a polynomial p{n) such that 
every a-normalization of a proof net 11 takes at most p(|n|) steps. 

This is not so interesting, because !P cannot codify all polytime functions. 

2. "P is weakly polynomial iff there exists a strategy o such that for every proof 11 of !P 
there exists a polynomial pn{n) such that the a-normalization of 11 takes at most pn(|n|) 
steps. 

This is uninteresting, as well, because every system would be weakly polynomial 
according to every strategy a, just choose pni^) large enough. 

Now, let us arrive to the main problem. 

Problem 4.1.6 Given a system !P c MS, is it (strongly) polynomial? or weakly polynomial? 
Of course, for each X, 23x is not polynomial, because of Proposition 3.3.11 at page 39. 

Definition 4.1.7 PMS is the class of the subsystems of some 23x that are polytime. 

The following Lemma is a trivial property that we will use often: 

Lemma 4.1 .8 (Monotonicity) 

Let P c <3 be two subsystems, and Q e PMS. Then, P e PMS, too. 

Proof. All the reductions 11 — >* E that can be performed in P may be performed in Q, too. 
Now, in Q there exists a polynomial p(x) such that [11], ||n|| <p {\Yl\), and the same polynomial 
bounds the reductions in 'P. □ 
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Remark 4.1.9 (Cost of Box Duplication) Some authors (e.g. [NM02]) underline that the 
rewriting rules have not all the same cost (where the cost of a single ns is the time needed to 
perform it): box duplication should take a time proportional to the content of the box itself. 
Actually we agree with them, but for sake of simplicity we considered box-duplication as 
constant-time. 

4.2 Following ILAL 

First of all, we generalize the proof of polynomial soundness for ILAL [AR02]. We classify 
the cuts in Figures 3.7, 3.8, 3.9, 3.10 in the following way: 

Definition 4.2.1 (Classification of Cuts) We call modal cuts the cut nodes named [P/P], 
[P/Y] and [I/-]; linear cuts the cut nodes named [®/®], [V/V], [-o / -o] and [I/J; and garbage 
collector cuts (gc) the cuts [W/_]^ [_/h] and [!/_]. 

We notice that: 

1. The [I/_] cuts belong to all the categories. 

2. The linear cuts can always be eliminated, in every system f where they exist; eliminating 
them at some level i can lead to some new cuts at the same level i, of unknown name. 

3. The elimination of a (reducible) modal cut can lead to some new modal cut or gc cut at 
the same level (plus some other cuts at the higher levels). 

4. The elimination of a (reducible) gc cut can only lead to some new gc cut at the same level. 
These observations allow the following definition: 

Definition 4.2.2 (Canonical Strategies) A reduction of TL is said canonical if it has the 
following shape: 

n = Do ^* ^* Hi n; . . . ^* n^+i l 

where d = d{Yl), Yl'. is obtained reducing all the linear cuts at level i in Yli, is obtained 
reducing all the modal cuts at level i in Yl'. and E is obtained reducing all the gc cuts in n^_^^ . 

Lemma 4.2.3 (Canonical Strategies Are The Worst Ones) 

Let n be a proof net. For every reduction a : n = Do ^ Hi ^ . . . ^ 11/ = E there exists 
a canonical reduction t : n = ^ ^ . . . ^ 11^', = E such that (i) /' > / and (ii) 
max{|re| I i < V] > max{|ny| | 7 < /}. 

Moreover, if a is a reduction performed in some P Q MS, then also t is performed in !P. 

Proof. We proceed by induction on Z. If / < 1, of course the reduction is canonical. Otherwise, 
we can assume that YIq ... n/_i can be transformed into some canonical reduction 
n = Dq ^ —>...—> = n/_i, while Yli_i — n/ does not follow this canonical 
reduction. The reduction of a does not follow a canonical reduction because there is another 
(reducible) cut |S that should be reduced before a. We claim that we can reduce |S before a, 
with some further minor modifications in the reduction sequence. Let us distinguish some 
cases: 

1. a is a modal cut and j3 a linear cut at the same level. This case is easy: a and j3 do not 
interact at all with each other (they are not a critical pair), so there is no difference in 
the order of their reduction. We exchange them, and we build a new sequence, with 
the same length /' = I and with the same greatest size. 
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2. a is a gc cut and /3 a modal or linear cut. We can exchange the order of the 2 cuts. Now, 
it's possible that some new reducible cuts appear, because according to o it was erased 
before reduction; we just reduce them and we get a new sequence with /' > /. The new 
sequence has the same greatest size than the previous one. 

3. a has depth d' and jS has depth d < d' . Let us call b the box at level d in which a is 
contained. Let us consider the possible fi's. 

• Of course, if ji is not a cut with b, we can just exchange a and |S. 

• Similarly if f5 is [P/P] with the box b. 

• If |S is [P/Y] with the box b, we can reduce jS before a: in this way b is duplicated. 
The new normalization sequence is strictly longer than before, V > I. Moreover 
the greatest size of this new sequence can be greater than the greatest size of the 
previous one. 

□ 

Lemma 4.2.4 (A Condition for Polynomiality) 

Let P c MS. Let us assume that for every d there exist two polynomials p{x),q{x) such that 
for every proof net n of P with d{YT) < d and for every d < d{uy. 

[n]'^<p(|n|), imii'^ < ^(ini). 

Then P is strongly polytime. 

Proof. We prove that the result holds for every canonical reduction; Lemma 4.2.3 tell us that 
in fact it holds for every reduction. 

Let us consider a canonical reduction a: 

n = no ^* ^* ni ^* n; ^* . . . ^* n^+i e. 

n^' is obtained from n, in linear time |n,|, and the size is not increased: |n^| < |n,|. 

Oj+i is obtained from in time p(|n^|), and the size is at most ITIj+il < ij(|np. 

E is obtained from Ylg+i again in linear time in^+il, and the size does not increase: 

|E| < |n^+i|. So 

|n,| < <?(|n;_ii) < <?(|n,_il) < ^ (<?(in,-2i)) < . . . < (Pi) < (|n|) . 

This means that P is polysize. Moreover, the reduction takes at most 

Pol + p (mi) + \m + p (|n;i) + ...+P (in^i) + p^+ii 

< Pol + pii + . . . + p^+ii + p (p^i) + p (\n[\) + ... + P (p^i) 

< (5 + 2)^(^)(|n|) + (,9 + i)p(^(^)(|n|)) 

steps, and so P is also polystep. □ 

This proof of weak polynomiality is a generalization of (part of) the proof of weak 
polynomial soundness for ILAL in [AR02]. The proof of strong polynomiality is a variation of 
the proof of strong polynomiality for ILAL in [Ter07], but with a more combinatorial flavour. 
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4.3 Semantical Criteria for Polytime Soundness 

The first propositions that we shall prove to distinguish polytime and not polytime subsys- 
tems P are semantical, in the sense that they are based on the context semantics of the proof 
nets of P. 

4.3.1 Context semantics: definitions 

We adapt the context semantics technology of [DL08]. Context semantics essentially defines 
a notion of CS-path over the nodes of a proof net. A OS-path between two nodes tells that 
they can communicate each other. For example, let us imagine that a proof net Yl contains two 
nodes u, v, one (E>x and the other one and that during some reduction D YV the residues 
u' , v' of u, V become connected through a cut, so that they can finally annihilate. In this case, 
the context semantics says that, in Yl, there is a CS-path between u and v. So, OS-paths can 
be used to predict the future reductions of a proof net. Technically, OS-paths are obtained 
using contexts, that is quadruples (e, U, V, h), that record the nodes already encountered over 
a OS-path. We will describe them in a moment. 

We just stress that our framework is simpler, since digging and dereliction are missing in 
MS. The first consequence is that we can use contexts {e, U,b) with just three components. 
Though, our version of context semantics must supply a quantitative computational model 
for systems where (i) the full cut-elimination does not hold, and (ii) the weakening is on 
arbitrary formulae. 

Definition 4.3.1 (Exponential Signatures) An exponential signature is a formula gener- 
ated by the following grammar: 

f =^e I r{t) I l{t). 

S is the set of exponential signatures. 

def 

Definition 4.3.2 (Stacks) A stack element is an element of S = {a, o, f, s, x} U 6. A stack is 
a finite non empty sequence of stack elements, that is an elements £ S"*". 

def 

Definition 4.3.3 (Polarities) A polarity is an element of S - {+, -}. If c is a polarity, we 
denote c J, the other one. When needed, we can consider the two polarities as +1. 

Definition 4.3.4 (Contexts) Let Yl a proof net. Then a context of IT is an element of 

Cn =^EnxS+xS. 
The nodes of MS induce rewriting rules over contexts: 

Definition 4.3.5 (Rewriting Relation Among Contexts) Let IT be a proof net, C,C' € Cn- 
We write C i->n C', ifC can be obtained from C through the rewriting relation described in 
Figure 4.2. 
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(g,U,+) ^nQi,U-o,+) 
{e,U,-) i^n (h,U-BL,+) 
{h,U o,-) ^nigM,-) 
(hU-B^,-) ^u(e,U,+) 
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(e,U-^,-) 
(h,U,-) i^n (e,U-o,-) 
(e,U-a,+) ^n(g,U,-) 
{e,U o,+) H^n (^,U,+) 




{e,U,+) i^n {h,U-i,+) 
{g,U,+) ^n(/!,U-x,+) 
{h,U-f,-) {e,U,-) 
ih,U-x,-) ^n(g,U,-) 




(/;,LJ-f,+) H^n (e,U,+) 
(/!,U-x,+) h^n 
(e,U,-) (/i^ii-f,-) 
fefi,-) i^n (/i,!i-x,-) 
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{e,U,+) ^n{g,U-s,+) 
{g,U-s,-) ^n{e,U,-) 
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{e,U-s,+) ^n{g,U,+) 
{g,U,-) ^n{e,U-s,-) 
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(h,U-1-{t),+) H^n {e,U-t,+) 

{h,U-r{t),+) {g,U-t,+) 

1 J . ^ —\ (h 1 J ■ ^ —\ 
[L, u • I, ) i-^n V'' f-J J-IU/ ) 

{gM-t,-} ^11 (//, U ■ r(0, -) 
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{e,U,+) (g,U,+) 

(a 1 J —\ i—^T^ (p IJ —\ 




1 E 
\e 


) — 1 

1 


(e,U,+) H^n {h,U,+) 
(h,U,-) H^n(e,H-) 







Figure 4.2: Rewriting Relation among contexts. Notice that if (e, U, h) i-^n W , U', b') then also 

{e',U',h' i) 

Definition 4.3.6 (Canonical, Initial, Final Contexts) (e, t ■ U,b) is canonical if t is an ex- 
ponential signature, U does not contain exponential signatures, and if U contains an even 
number of a's, then b is +, otherwise, if U contains an odd number ofa's, then b is -. 
{e, t, +) is initial if it is canonical and t is exponential, 
{{u, v), e-U,b) is final if it is canonical, and either 

1. b = + and a{v) € {W, o}, or 

2. b = - and a{v) - i. 

Canonical, initial and final contexts are the atomic steps that we use to compose the correct 
CS-paths to travel along the edges of a proof net. "Correct" means that a CS-path highlights 
the pairs of nodes that, eventually, will interact by means of a cut-elimination step, in the 
course of the normalization. The ultimate goal of defining CS-paths is to use them for 
walking through a net from the root of any box to either a weakening node that will erase 
it, or to a terminal node of the whole net or of a proof net inside a box. The existence of 
many canonical CS-paths from the same box root means the existence of contraction nodes 
that, in principle, will duplicate the box. In particular, any initial context is defined to go 
upward — thanks to its positive polarity — in the proof net, traversing contraction nodes — 
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thanks to its exponential signature — . Any final context says that, starting from the root of a 
box, we have walked through a net "consuming" all the directions settled by an exponential 
signature, getting to the empty exponential signature e. Figure 4.3 is an example of complete 
CS-path from the root of the rightmost box to the output of the net, only highlighting the 
stack and the polarity. The leftmost box is "skipped" by the sequence of contexts associated 
to the net, because we are in a stratified setting. 

Recall that we have defined graph-theoretical paths on page 33. As anticipated, the 
following is a different notion of path: 

Definition 4.3.7 (CS-Paths and Maximal CS-Paths) Let IT € PN(a3x)/ h eVu aPo node or 
a contraction, v £ Vu. A CS-path trom h tov is a finite sequence 

def , \ ^ T 7 * 

T = (Uo, Ml ... , Un-l, Un) £ V^n 

of nodes in Yl, where b - uq and v - Un, for which there is a sequence of contexts 

def 

T = {{{b, wi), Uo, bo), ((m„-i, v), Un-i, b„-i)) e Cn 

such that (i) {{b, Wi), Uq, bo) is initial, and (ii) (e,, Uj, i->n i^i+i, Uj+i, bj+i), for every < i < 
n -1. 

Moreover, t is maximal if ((w„_i, v), U„-i, b„-i) is final. 
Finally, we call T the sequence of contexts associated to t. 

Please notice that, differently from [DL08], a CS-path is made up of nodes, and not of 
contexts. This implies that two CS-paths are equal when they pass through the same nodes, 
regardless their contexts. 

The definition of maximal CS-paths confirms the intuition given before. Every of them 
starts from the root of a box b and shows where the root of a copy of b will eventually occur, 
after every instance of the rules only in Figures 3.7, and 3.8 have been applied. 

Notice that an initial context is canonical, as well as all the contexts in a CS-path are 
canonical. 

A CS-path is not, in general, a graph-theoretical CS-path, because of the orientation of 
edges. 

Definition 4.3.8 (CS-Path Length) If t = {uo,Ui, . . . ,u„) is a CS-path, the length of t is 
len(T)'^=^n. 

Definition 4.3.9 (Cycles) A cycle is a CS-path t such that, if ((e,-, !J„ &,)),<« is its associated 
sequence of contexts, theneo - fin and bo = b„. A proof net is acyclic if it has no cycles. 

Definition 4.3.10 (CS-Paths, Number of CS-Paths) LetU € PN(«x)/ b e Bn- Then 

def 

On{b) = {t \t is a maximal CS-path from b to some v e Vu} • 
Rn(&) ='#0n(&). 

Like in [DL08] we call Rn{b) the number of copies of b. The expression "number of 
copies" anticipates the content of Lemma 4.3.16: Ru{b) shall give a bound on the number of 
copies of b that can be generated during a reduction. This is the content of 
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Figure 4.3: An example of maximal path. 



Definition 4.3.11 (Proof net Weight) LetYl be a proof net. Its weight at depth d < d{YT) is 

Wrf(n)='2]^Rn(fo). 



Definition 4.3.12 (Proof net Modified Weight) Let D be a proof net. Its modified weight 
at depth d < d{n) is 

Td(n)= Td(n,M) 



a{u) e {I, cut, W,h,Pf(m),i, o} 
12 • (Pn(w) + 1) • Rniuf a{u) e {Po(m)}. 



Td(n, u) \ 3 a{u) e ®k, V^, V^, Yq(Tn, n)} 



(Pn was defined on page 28). Notice that this weight is slightly simpler than the one 
defined in [DL08]. Again, the simplification is possible thanks to the stratification of our 
setting. 
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4.3.2 Properties of the Context semantics 

We show that the main properties of the context semantics, as proved in [DL08], keep holding 
in our setting, in which, we recall, we have unconstrained weakening and, for any generic 
P of MS, we cannot assure full cut elimination. Recall, indeed, that cut elimination holds 
for each full 23x; so, in all the following proofs, we will imagine that the reductions are 
performed in 23x/ instead than in particular "P c 33x. 

In order to simplify our proofs, we firstly print some properties (from Remark 4.3.13 up 
to Lemma 4.3.15) that do not hold in the general CS settings, but only in our specific stratified 
setting. 

Remark 4.3.13 (Relating contexts in a CS-path and the top of a stack.) If (e, t-U, b) is a canon- 
ical context in a CS-path t, the top of the stack t ■ U relates to the formula jS(e) that labels 
e. If |S(e) is A (2) B, then the top is f or x. Similarly, jS(e) = Va.A corresponds to the s, while 
|S(e) = A -o B to one between o and a. Finally, if jS(e) = nA, the top element must be the 
exponential signature t. 

Remark 4.3.14 (Some Rules are Useless) We remark that, thanks to what we have just un- 
derlined, the canonical contexts inside a CS-path t can never reach neither a Po node, nor a Y 
node with negative polarity. Indeed, a negative polarity implies that at least one a is present 
on the stack, while the context of an edge incident in a contraction or Po node has t as stack. 
As a consequence, 3 of the the rewriting rules from contexts to contexts are useless: they 
are the three rules that arrive to nodes Po, Y with negative polarity. Also, a CS-path only 
consumes an (initial) exponential signature, never adding 1 or r symbols. 

In traditional CS, composition of CS-paths is not in general a CS-path. Instead, with our 
limited notion of CS, the property holds: 

Lemma 4.3.15 (Compositions of CS-Paths is a CS-Path) 

Let T be a CS-path from ulov inside some proof net n, wliere y is a Po or a contraction; and 
a be a CS-patli from v to iv. Tlien, tine patli obtained joining t and o is still a CS-path. 

Proof. The CS-path t starts in u with context (ei, ti, +) and arrives in v with context {e2, t2, +). 
The CS-path o starts in v with context (es, ^3, -I-) and arrives in w with context (£4, t^, +). We 
pointed out that t cannot add new exponential signatures to ti; so ti = T{t2). So, t2 is 
untouched and we can freely replace it with t^. We have found another different sequence of 
contexts for t: it starts in u with context (ei, T(f3), -I-) and arrives in v with context {e2, t^, +). 
This sequence of context may go on up to iv following the contexts for o. So we found a 
sequence of CS-paths for the composition of t and o. □ 

The following Lemma explains the meaning of the expression "number of copies". 
Lemma 4.3.16 (Number of Copies) 

Let n ^* L, fe 6 and @ the proof net inside b at depth d-\-l. Then, in E, there are at most 
Rnib) equal residues ("copies") of @. 

Definition 4.3.17 LetlTreducetoEinasing-Jens^byfiring-acutc. A]so,JetT = (mq/- • •/W,-i,c, m,+ 
be a CS-path in Yl that passes by c. The residue Res(T) of t is the set of the residues of the 
nodes ofx in E. 
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Lemma 4.3.18 (The Residue of a CS-Path is a CS-Path) 

Let n ^ E through the reduction of a cut c. Let t = (wq, • ■ • , m,-!, c, ...,u„)bea CS-path 
in n that passes by c. The residue Res(T) of t, ordered in the natural way, is still a CS-path. 

Proof. The proof is by cases on the possible ns. □ 

One may imagine to relax the Definition 4.3.17 allowing the path t not passing by c. 
However in this case Lemma 4.3.18 would be false: think to the [h/P] ns, where the residue 
of a path may be disconnected. 

On the other side, every CS-path in L is the residue of - at least - one CS-path in IT; we 
call O the relation that associates a CS-path in E with all the corresponding CS-paths in IT. 
O is not, in general, a function. 

Lemma 4.3.1 9 

Every proof net n is acyclic. 

Proof. Let us consider a canonical reduction for IT: 

n = Ho ^ Hi ^ . . . ^ n„ ^* E 

where n has been chosen least (please see on page 50 the definition of canonical strategy). 
We proceed by induction on n. 

Base case, n = means n contains only gc cuts. Straightforward to prove, by induction on 
the structure of IT, that if (e, U, b) ^-^^ (e, V, c) then b ^ c. 

Inductive case. If n — >s Yli, by inductive hypothesis we can assume Yli is acyclic. Now, 
every CS-path t in IT corresponds to (at least) CS-path 0(t) in 111, as we have already 
said; and the correspondence O preserves acyclicity. ^ 

□ 

Lemma 4.3.20 

For each IT and b e Bn, Rn{b) > 1. 

Proof. Let us consider a sequence of contexts starting from a box b with a context {e, t, +), 
where t is an exponential signature. Provided t is long enough, there is no way to stop such 
a sequence, unless (i) we arrive in a W, i or o node, or (ii) the CS-path is a cycle and returns 
at the starting point. But this second situation is forbidden by the previous lemma. So there 
is at least a canonical sequence of contexts starting from b and arriving in a W, i or o node. 
Choosing t of the correct size, we can make the last context a final context, and this is a 
maximal CS-path. □ 

Lemma 4.3.21 

If n at level d has only gc and [P/P] cuts, then for every b e Bn, Rn{b) = 1. 

^This latter observation would not be obvious if S were a gc step. 
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Proof. By structural induction on n. 



□ 



Lemma 4.3.22 (W^ and Decrease) 

Given a proof net n, let us suppose n -^s Then 

1 . Wd(n) = Wd(Z), if S e {[^ / -^l [®/®], [V/V], [P/Y]}; 

2. Wd(n) = Wd(i:) + Rn{b), if S = [P/P] and is one of tlie merged boxes; 

3. Wd(n) > Wd(E), if S is a gc step; 

4. Td(n) > Td(E); 

Proof. In the first case the CS-paths and the boxes are untouched, so for every b, Ru{b) = 
Rz(Res{b)). In the second case, a box b disappears, so the sum that defines decreases of 
exactly Rn{b)- In the third case, also, a box may disappear depending on what kind of node 
is cut with the weakening node. 

For the last point, the reader can check that Td{TT) strictly decreases for every possible 
reduction step; we only prove the most difficult case. Let us assume O — >s by a [P/Y] 
normalization step; a box b is duplicated in bi, b2. Let P = Pn{b) = Pn{bi) and Ri = Rnibi); it 
holds Rn{b) = Ri+R2- Now, if we call x the weight of a generic contraction, y the weight of 
a cut, and z the weight of a Pi node. 



Td(n) = A + x + y + Td{b) + P-z 

= A + 3 + l + 2(P + l)iRi + Rzf + P 

Td(E) = A + 2y + Tdbi) + Tdib2) + 2P-TdiaPi) + P-x 
= A + 2 + 2(P + l)Rl + 2(P + l)Rl + 2P + 3P. 

Tdi^) - TdiT.) = 2 + 2{P + 1) • 2J^ii^2 - 4P > 2 + 4(P + 1) - 4P = 1 > 



remembering that every Ri is > 1. 



□ 



Lemma 4.3.23 (Weight and IVIodified Weight are Polynomially Related) 
Tliere is a polynomial p{x, y) such that for every 11 and every d 



Td(n)<p(Wd(n),|nid); 



Wd(n) < Td(n). 



Proof. 



Td(n) < sinid + 2|nid ^n(^) ^ ^l^ld + 2|nid {^^m? , 

Wd(n) = ^ Rnib) < J^n(b) ^ T^P). 



□ 
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Lemma 4.3.24 (The Modified Weight bounds Time and Space) 
Let n be a proof net. Then, for every i > d, 

[uf, \\n\f, < Tdiu), \\n\\1 < \n\i ■ r,(n), \\n\f < \n\ ■ T,{n). 

Proof. 

(i) Let us consider a reduction IT E. We already know that T^{-) strictly decreases 
during reduction; so n < T^(n). Since every node has weight at least 1, < T(^(n). 
So imilj < TdU). 

(ii) Let us consider a reduction 11 ^* E and fix a level / > d. For every u node at level 
i, inside a box b € , at most Rn(b) copies of u will appear in E (Lemma 4.3.16). 
Let bi,...,b]( be all the boxes at level d, and Si,...,Sk their sizes at level /. Then, 
linilf < Si • Rn(foi) + ... + Sk- Rnibk) < \n\i ■ TdU), since Rn{bi) < 1^(0, 

(iii) Immediate corollary of (ii). 

□ 

Corollary 4.3.25 

Let !P c Sx. Let us assume there exists a polynomial r{x) such that for every proof net n of 
P and for every d, Wrf(n) < r(|n|). Then "P is strongly polytime. 

Proof. Lemma 4.3.23 and 4.3.24 and hypothesis imply that [n]**, ||n||'*, ||n||f < P(|n|) for some 
polynomial P{x). Then Lemma 4.2.4 implies the thesis. □ 



4.3.3 Strong Polytime and Spindles 

This is one of our most important sections. Up to this point, we have found a condition 
(Corollary 4.3.25) that allows a subsystem to be polytime. However, that condition is quite 
general, we need something more precise. Here, we will define a geometrical condition, 
based on the geometrical structure called spindle, that can be satisfied by a subsystem P. We 
will show that, if such a condition is satisfied, then also the hypothesis of Corollary 4.3.25 are 
satisfied, so that the subsystem is polytime. The main result is in Proposition 4.3.40. 

Definition 4.3.26 LetP c 23x, TL e FN{P);e e En an edge labelled mA entering a contraction 
u; f e Euan edge labelled nB outgoing a Po node b; d{e) - d{f) . A spindle mA : E : nB between 
e and f (or also between u and b) is a pair of CS-paths: t from e to f passing through the left 
conclusion ofu; p from etof passing through the right conclusion ofu; and such that t and p 
are the only CS-paths connecting e with f. e, f, u are resp. the principal premise, principal 
conclusion and principal contraction of E. An edge that is premise (resp. conclusion) of a 
node of E, but that is not part of E, is said non-principal premise (resp. conclusion). We 
shorten mA : E : nB with m : E : n. 
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Figure 4.4: (a) A spindle, (b) a chain of two spindles. 



Definition 4.3.27 Let P c ©X/ n € PN(!P), n containing r > 1 spindles m-^Ai : Ei : 
rtiBi, . . . , iTirA,- : : n,.B,-. Lef us suppose that each spindle is between nodes Ui and hi, 
and for each i < r, II contains a CS-path between hi and m,+i. The graph composed by 
the r spindles and the r - 1 CS-paths is called a chain of r spindles, and we shall write 
miAi : @ : n,B,- for it. \@\ - r denotes the number of spindles it contain. 

Notice that a spindle is a chain of 1 spindle. 

Definition 4.3.28 Let P c n £ PN(!P), mA:@:nB a chain of r > 1 spindles inside U, 
between u and h. Let us assume thatTL contains another node d and a CS-path x such that x 
connects h to d, and the last edge of x is labelled mA' ( possibly d - b and x — Then, the 
graph made up of& and x is a dangerous chain of spindles; we write mA -.{©U x)'- ^A' for 
it. A dangerous spindle is a dangerous chain with r = 1. 

Note that if (0 U ;^:) is a dangerous chain of spindles starting and ending with the same 

def 

formula mA, we can build other chains 0„ = (0 U Xl . . . N (0 U as long as we want. 

n 

We call exponential chain such an object 0„, for each n. Please notice that, a priori, we 
are not sure that an exponential chain can reduce; but, if it reduces, the reduction takes an 
exponential time. We will prove that in Lemma 4.3.35. 

Remark 4.3.29 (About the Definition of Spindle) Consider the following, alternative, defi- 
nition. A chain of spindles is a single spindle in which we relax the request: "the two CS-paths 
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n2 



Figure 4.5: An example of proof net, whose nodes have been classified as in proof of 
Lemma 4.3.31. 

p and T are disjoint". Such a definition is not equivalent to the previous one; but, more im- 
portant, it is not good for us because we want to control the number r of the spindles in the 
chain. 

Lemma 4.3.30 (One-Ring-Long Chains) 

Let P c Sx- If "P has a (dangerous) chain of spindles then it also has a (dangerous) spindle. 

Proof. Let us take a chain of r > 1 spindles 0. We build a module ©' containing: (a) the lower 
spindle of @; (b) the r - 1 paths that connect the r spindles; (c) for each one of the other r - 1 
spindles, we chose exactly one among the two CS-paths composing it. We get a module @' 
with exactly one spindle. If © U ^ was dangerous, then ©' U ^ is dangerous, too. □ 

Lemma 4.3.31 (Short Chains and Number of CS-Paths) 

Let P c 23x. Let us assume that every chain of spindles that can be built in P cannot have 
more than L spindles, for some constant L € N. Tlien there exists a polynomial p(x) such 
that for every n e PNCP), for every d < d{n) and for every b e B^, 

Ru{b)<p{\nu). 

Proof. Let bhe a fixed box at depth d in n. 

1. We want to classify the links u e in classes: class-0, class-1, class-2, . . . according to how 
many consecutive spindles there are betiveen b and u. Let us consider all the possible CS-paths 
T between b and u. Let us call Z,^' the module made up of all the nodes of all the t's. Let 
us consider all the possible chains of spindles O^', W^^, . . . , Q^' whose nodes are among the 

nodes of T.y The node u is said class-i if i - max ||o||| , |^^'| , . . . , Figure 4.5 may help 
the comprehension. Notice that there are at most L -i- 1 classes (0, . . . , L) by hypothesis. 
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2. Let m, be the number of Contractions of class-z (they are all at depth d), and m = nto + . . . + hil- 
We observe that m < 

3. For <i <L, let IT, be the module containing all and only the class-j nodes, for every ; < i. 

4. We define maximal relatively to n, a CS-path t starting from h such that there exists a 
maximal CS-path t' starting from h whose intersection with D, is exactly t. So, for 
example, the CS-paths maximal relatively to 11^ are exactly the maximal CS-paths in IT. 

5. We call R„ for < / < L, the number of CS-paths starting from h and maximal relatively 
to n,. The definitions imply Ru(b) — Rl- 



contraction node, but not in a (g)£ node, which, instead, forces to go in one specific direction. 



Lemma 4.3.31 and Corollary 4.3.25 directly implies: 
Proposition 4.3.32 (Short Chains and Polynomiality) 

Let P c 23x. Let us assume that every chain of spindles that can be built in P cannot have 
more than L spindles, for some constant L e N. Then P is strongly polytime. 

Some examples. Some useful didactic examples now follow (from Lemma 4.3.33 up to 
Example 4.3.36). The goal is to begin to understand, given a subsystem P, if it is polytime 
or not. The following two Lemmas, in particular, are easy applications of Proposition 4.3.32; 
but, they can be easily proved also as corollaries of Proposition 4.3.40. 

Lemma 4.3.33 (Some Polytime Systems) 

Let P c ©X, with X = {1,2,... ,M), ordered in the usual way, and whose rules satisfy the 
following restrictions: 

1. if 'P satisfies Pci{mi,...,mi), then q is greater or equal than every m,, and equal to at 
most one among them. 

2. if P satisfies Yda, b), then c is less or equal than both a and b. 
Then P is strongly polytime. 

Proof. Let us consider a chain of r spindles. Let us consider two among the 'main' r 
contractions of the chain. Let us assume the upper one, v, has label Yc(fl, b), and the lower 
one, u, has label Y^i^, f). There are two CS-paths starting from u with modalities e,f and 
arriving in v with modality c. The CS-paths can contain only boxes and contractions: so, by 
hypothesis, e < c and f < c. But the two CS-paths must join in a box, let us call it B; and at 
least one of the CS-paths, by hypothesis, strictly decreases its modality passing through B. 
We can assume e < c and f < c. Now remember that c < a,b, and we realize that the two 
labels must be different: (c, a, b) + (d, e, f). And this holds for every couple of contractions u, v 
in the chain: so r < M. We can now apply Lemma 4.3.31 and Proposition 4.3.32 to conclude 
that the system is strongly polynomial. □ 




Two CS-paths separate only in a 




Similarly: 
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Lemma 4.3.34 (Some Polytime Systems) 

Let P c Sx, with X = {1,2,...,M}, ordered in tine usual way, and wliose rules satisfy the 
following restrictions: 

1 . if P satisfies Pqimi, ni)^), then p is greater than every m,-. 

2. if f satisfies Yc(fl, h), then c<a and c<h. 
Then P is strongly polytime. 

Lemma 4.3.35 (Some Non-Polytime Systems) 

Let P c Sx- Let us assume that: (i) P can build a dangerous chain mA : (I, u x) : of 
spindles (in part, a single dangerous spindle); (ii) mA is a tautology, that is P can prove 
h mA; (ill) E u is a proof net; and (iv) P enjoys cut-elimination. Then, P is neither polysize, 
nor polystep. 

Proof. Remember that E U x is a chain of spindles between 2 edges labelled with the same 
modality. In this case, moreover the two edges are also labelled with the same formula mA. 
Using (ii) there exists a closed box h> \- mA in P. Using h and (iii), we can build the proof 
net 0„ = E M . . . N E N Now, let us try to reduce @n- In particular, thanks to (iv), we can 

n 

decide to reduce the whole level 0, but not the upper levels. In this way, the reduction is not 
performed in polysize: the content of h is duplicated 2" times. Now, at level 1 there are a 
least 2" new cuts; reducing them, we understand that this reduction is not polystep, too. □ 

Example 4.3.36 We must be careful in the identification of spindles. Let us consider the 
following system with 4 modalities: 

P = {I, -^L, Pm{n, q), Pn(0), P,m, Pr(n, n, q, q), Y,n(n, n), Yn(q, q)} . 

If we only look at the rules, we may think P can build a spindle, the more, a dangerous 
spindle: 




However, there is no way to place this spindle inside some proof net. Indeed, by induction 
on the construction rules, the reader can check that: (i) for every Yl € FN{P) containing the 
rule P,„(n, q) at level 0, there are at most two modal inputs, one with modality n and the other one 
with modality q; (ii) for every H containing the rule Pr(n, n, q, q) there are at most 4 modal inputs, 
with modality m, n or q; and in particular, (Hi) P can only build chains of at most 1 spindle. So this 
system is polytime by Proposition 4.3.32. 
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The system obtained adding e.g. a W rule is not polytime: 

r = {I, ^L, Pnrin, q\ P„(0), Pq(0), Pv(n, n, q, q), Y,n(n, n), Yn(q, q), W} . 

Of course the strange behaviour of !P cannot occur in presence of the rules ^^ji or W, nor in 
presence of only standard Y' contractions. Indeed the first two rules always allow to create 
a proof net from a dangerous chain; and the standard contraction is almost useless inside a 
spindle. 

4.3.4 A first Criterion for Polynomial Time Soundness. 

The previous results (Proposition 4.3.32, Lemma 4.3.33, and Lemma 4.3.35) give some nec- 
essary and sufficient conditions for the polynomial time soundness of subsystems. Here, 
we restrict our attention to sensible subsystems, that have been defined on page 34. In this 
case we improve those theorems coming in particular to Lemma 4.3.39, which simplifies 
Lemma 4.3.35, and Proposition 4.3.40, that gives a criterion, i.e. a both sufficient and neces- 
sary condition, for polytime soundness. 

We need the following two technical Lemmas. 

Fact 4.3.37 (Structural Properties of Sensible Subsystems) 
Let f be a sensible subsystem. 

1. For every I > 0, P contains Ili>A,...,A \- A, witli A = y ^ y, I occurrences of A as 
assumptions, and d{Ui) = 0. 

2. IVIoreover, if h belongs to "P, then the formula A can be any one in Tx- 

3. If P proves A,...,A\-A, with Z occurrences of A, then it proves also miA, m^A h qA 
for k<l, for every Pq(mi, . . . , m.]^) e P. 

Proof. 11; is buUt using one -o.;^ or h rules, plus I occurrences of the free weakening. □ 
Lemma 4.3.38 (Building Good Spindles) 

Let P c 93x be a sensible subsystem that can build a (dangerous) spindle L. In P there is 
another (dangerous) spindle Z" such that: (a) E" contains only Contractions, Box-out and 
Cut nodes at level 0; (b) Every edge e at level has label qA, for some fixed A; (c) ^(E") = 1; 
and (d) The only premise of E" is the principal one. 

Proof. We begin the proof considering E to be a standard, non-dangerous, spindle. The goal 
is to transform, step by step, E into E". 

Let n 6 PN(!P) be the proof net containing E, an example of which is in Figure 4.6a. We 
reduce all the linear cuts in n at level 0. We get to IT' e PN('P) with E', the reduct of E, 
in it. (See Figure 4.6b.) E' is still a (dangerous) spindle, as well as the residuals of the two 
CS-paths p, T of E are still CS-paths in IT. The three CS-paths cannot contain linear nodes. 
Indeed, we just observe that, e.g., t must begin in a contraction, with label nA, and must 
stop in a box, with label mB. So it cannot cross neither any right-node, otherwise it would 
add a non-modal symbol to nA, and so the last formula could not be mB, nor any left-node, 
otherwise it would remove a non-modal symbol from nA. 

We transform E', just generated, into another graph E* by replacing every proof net 
enclosed in a box Pq(mi, . . . , nxi^) of E' by 11;^ > A, . . . , A h A as in point 1 of Fact 4.3.37 Conse- 
quently, every qB at level in E' becomes qA in E*, for some q. This replacement implies 
^(E*) = 1 (Figure 4.6c). 
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it does not satisfy (d). Moreover E* is not necessarily a spindle, because it may be not 
contained in a proof net of "P. We can modify to get a E" that satisfies the point (d). If e 
is a non-principal premise of E*, entering some box b of E*, then we remove the edge e and 
we reduce the number of premises of b, according to point 3 of Fact 4.3.37. Now, we can plug 
every non-principal conclusion of E", exiting upward from some contraction u of E", with a 
weakening node: we get a proof net IT" containing E", thus showing that E" is a spindle. 

At last, if E U was dangerous, we can apply the same transformation to the CS-path X/ 
thus arriving to x"} ^" U X" is a dangerous spindle. □ 



Lemma 4.3.39 (Some Non-Polytime Sensible Systems) 

Let P c be sensible. Let us assume that P can build a dangerous spindle. Then P is 
neither polysize, nor polystep. 

Proof. The proof is similar to the one of Lemma 4.3.35. However, here we have more relaxed 
hypothesis on E. Firstly, we must transform the given dangerous spindle n : (E U : n into 
nA : (E" U x") '■ ^-A, as described in Lemma 4.3.38. Fact 4.3.37 assures the existence of a proof 
net b> h nA. Now, we call ©„ = (E" U x") N . . . M (E" U x") ^ b. Remember that we called 

n 

exponential chain such an object. 0„ is not a proof net because it can have many conclusions, 
but it can be placed easily inside a proof net Yin closing all its open conclusions with free 
weakening nodes. Please notice that |n„| = 0{n). At last, we reduce the first level of Yl„. 
This is possible, thanks to the downward closure of P: the reduction is performed bottom-up, 
starting from the lower box b. As we already notice when proving Lemma 4.3.35, such a 
reduction is neither polysize, nor polystep. □ 



Proposition 4.3.40 (A Polynomiality Criterion) 

Let P c 23x sensible, with M modalities. The following are equivalent: 

1 . !P is polytime. 

2. P cannot build any dangerous chain of spindles. 

3. P cannot build any dangerous spindle. 

4. P cannot build any chain {neither if not dangerous!) of more than M spindles. 
Proof. 

A. => 1. We can apply Proposition 4.3.32 with L — M and we get that P is polytime. 

-■2. =^ -il. If P can build a dangerous chain of spindles. Lemma 4.3.39 says that P is 
neither polystep nor polysize. 

-■4. => -i2. Let us assume that P can build a chain @ of r > M spindles. Let Wi, . . . ,Wr 
the principal contractions of the spindles in ©. By the pigeons-hole principle, at least two 
principal contractions share the same input label; let and Wj be the two incriminated nodes, 
and E be the chain of j - i < M spindles between them. E is dangerous. 

3. => 2. Obvious by definition. 

2. => 3. This is implied by Lemma 4.3.30. □ 

If the system is not sensible, the implication 1. 2. may fail; however the implications 
2. o 3. o 4. 1. still hold. 
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Corollary 4.3.41 (Polysize Implies Polystep) 

Let P c 93x a polysize sensible system. Then it is also polystep. 

Proof. Because if f reduces in polysize, then the same proof of -i2. => -il. holds: P cannot 
build any dangerous chains of spindles. So, the criterion tells us that, in fact, f is polytime. 
□ 

This means, essentially, that no sensible subsystem P of MS can represent PSPACE, 
unless, of course, PSPACE=PTIME. 

We shall apply in Chapter 6 the propositions proved in this Section. 

4.3.5 Strong Determinacy 

We generalize the definition of "strong determinacy" present in [DL08]. In that work the 
strong determinacy of ILAL is used to prove that ILAL is polytime. 

Definition 4.3.42 (Strong Determinacy) A subsystem c 23x enjoys strong determinacy 
iff for every Tl € PN('P) and every C £ Cn there is at most 1 context D such that D i— >n C. 

Lemma 4.3.43 (Strong Determinacy and Polynomiality) 

If !P £ ©X enjoys strong determinacy, then it is polytime. 

Proof. Strong determinacy is equivalent to the absence of spindles in every Yl. □ 
So, this is a condition sufficient but not necessary for polynomiality. 

4.4 Syntactical Criteria for Polytime Soundness 

Here, we move towards a different kind of Criteria. We want to avoid the use of context 
semantics, and we would like to understand if a given subsystem P is polytime "just looking 
at the building rules it contains". 

4.4.1 Augmented subsystems 

Here we will present a class of subsystems that by definition are closed w.r.t. their admissible 
rules. Recall that, traditionally, a rule is "admissible" inside a logic if it can be derived inside 
that logic, so that it can be freely added to the subsystem without changing the set of provable 
statements. Here, we will use the term "admissible" in a slightly different way: only some 
of the derivable rules are admissible, and the admissible rules are really derivable only for 
sensible subsystems. We shall see that if a subsystem P is polytime, the we can freely add 
all such admissible rules and we get another polytime system (Proposition 4.4.4). We will 
call augmented this larger subsystem. Moreover, we shall see that checking if the augmented 
subsystem is polytime or not is quite easy (Proposition 4.4.5). 

Definition 4.4.1 Given a system P c 23x/ define inductively its admissible (promotion 
and contraction) rules. 

• IfP has the rule Pin(mi, • • • , ^k) or Yq(m, n), then it is admissible for P; 
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• If rules P,n(r, irti, . . . , mj.) and Px{ni, . .. ,ni) are admissible for V, so it is the rule 
P,n(ni,...,n/,mi,...,mfc). 

• IfrulesPmix, mi, . . ., nik) and Yq(r, s) are admissible for P, then also therulePm{q, rtti, . . . , mjt) 
is admissible for V. 

• If rules Pm(iTii/ • ■ • / iTtA:) and Yni(r, s) are admissible for V, then also the rules Pxim\, ■■■ , irtfc) 
and Ps(iTii/ • ■ • / iTifc) are admissible for V. 

• If rules Y,n(r, s) and Yr(q, p) are admissible for V, then also the rules Y,n(c(, s) and Y,n(c), p) 
are admissible for V. 

• If rules Y|„(r, s) and Pm(ct) are admissible for P, then also the rule Yq(r, s) is admissible for 
9. 

• If rules Y,n(r, s) and Pq(5) are admissible forP, then also the rule Y,n(r, q) is admissible for 

r. 

If !P is sensible, then all its admissible rules can be derived in V. This can be proved 
by induction. For example, if V has the two rules P,i,(r, irti, . . .,mjt) and Yq(r, s), so that 
Pm(q/ iTti^ • • • / iTi*:) is admissible for V, than this latter rule can be proved using W. 

Definition 4.4.2 (Augmented and Saturated Systems) Lef !P C 23x. The augmented system 
<S(!P) ofP is V plus every admissible rule for V. 
Iff - S{'P) the system is said saturated. 

Notice that S{'P) contains the closed boxes and it is downward closed. By the definition it 
follows that every augmented system S{'P) is saturated, i.e. S{S{'P)) - SCP). By definition, 
the augmented system S^P) of 'P contains one promotion rule for each module of "P that can 
be built with cuts, contractions and boxes but without spindles. 

Every proof net of vS('P), in fact, can use rules that are not in P; anyway, if 'P is sensible, 
each one of this rules can be decomposed in a number of more primitive rules that are in !P: 

Definition 4.4.3 (Primitive Proof nets) LefP c 23x be sensible. Consider a proof net Yl in 
S{P): all the rules of D can be substituted by a finite number of rules ofP; call Yl' the proof 
net ofP obtained by the rewriting. We call TL' the primitive proof net ofYl. 

An example is in Figure 4.7. 

Proposition 4.4.4 (Polynomiality of P and Polynomiality of S{P)) 

Let us consider a sensible system P c ©x- <S(!P) e PMS iff P e PUS. 

Proof. 

=>) This is just because P c S{P), and the Monotonicity Lemma 4.1.8 holds. 

<=) If P is polytime, let us assume by contradiction that S{P) is not polytime. Using Propo- 
sition 4.3.40, we know that S(P) can build a dangerous spindle L U x between two 
occurrences of Yq(r, s), while P cannot. However, P and S{P) may differ only for the 
admissible rules: E contains an admissible promotion or contraction rule of P. But, 
every admissible rule may be split in a larger number of promotion and contraction 
rules of P: so the primitive module L' U of E U is still a dangerous spindle, and it 
exists both in S(P) and P. This means that P is not polytime, a contradiction. 



68 



4.4. SYNTACTICAL CRITERIA FOR POLYTIME SOUNDNESS 




Figure 4.7: An example: a possible proof net in an augmented system S{P), and its primitive 
proof net in the original system "P. 




(b) One of the simpler danger- 




ous spindles induced by E. 



(a)E 



Figure 4.8: An example of dangerous spindle L, as in proof of Proposition 4.4.5. 



□ 



Proposition 4.4.5 (Polynomiality Criterion Based On Saturation) 

Let c be a sensible system. Then P is not polytime iff S{P) lias tine two rules Pq(r, s) 
and Yq(r, s), for some value of the parameters. 

Proof. Using Proposition 4.4.4, P is polytime iff vSCP) is polytime. "<=" case. The presence of 
these two rules leads to a dangerous chain of spindles and so S{P) is not polytime. case. 
If S{P) is not polytime it must have a dangerous spindle x between a contraction u and 



69 



CHAPTER 4. POLYNOMIALITY IN MS 



a promotion or contraction d, where the modality s that labels the conclusion of d labels also 
the premise of u. An example is in Figure 4.8. But, thanks to saturated-ness, we can merge 
all the nodes and boxes between u and w in a single box, and so we build a new dangerous 
spindle L' U x' made up of only 1 box and 1 contraction, as the thesis requires. □ 



4.4.2 Relations among Modalities 

Throughout this Section, we consider 'P c 23x be a fixed subsystem with M < oo modalities 
(for example a sensible subsystem). We define a number of different relations among the M 
modalities. These relations will be used to define some syntactical criteria for the polytime 
soundness of P. 

The notions of order, preorder and sim. have been recalled in Section 2.10. 

Definition 4.4.6 m5?| n whenever P can build a CS-path whose edges are all labelled with 
modal formulae, the first one with modality m and the last one with n. 

This relation is transitive. It can be built considering all the rules Pni^n) and Y,„(n, q), for some 
q, that can be effectively used in some proof net of "P, and then taking the transitive closure. 
Please recall that it is not obvious that a rule is used inside some proof net of !P, unless it is 
sensible (cfr. Fact 3.2.6). 

Definition 4.4.7 m9io n whenever f can build a spindle m : E : n. 

This relation is transitive, and it is a sub-relation of For the moment we neglect the 
algorithmic construction of 9io, even if we think that such algorithm must exist. However 
this relation is the most important from a theoretical point of view: 

Lemma 4.4.8 (Polynomiality Criterion Based On ?{o) 

Let P be a sensible subsystem, and 9?o as before. Then "P e PMS iff 'iio is a strict partial 
ordering. 

Proof. We already noticed that is transitive. !P has a dangerous chain of spindles iff 
3n(n9?c> n), that is if is not anti-reflexive. Now, if 9?o is a partial strict ordering then it 
is anti-reflexive, so "P has no dangerous chains; conversely, if P has no dangerous chains, 
Vn(-in 9?o n), that is 3io is anti-reflexive, and thanks to transitivity we conclude also that 9?« is 
anti-symmetric, and so a strict partial ordering. □ 

We are going to describe a further relation Jf^- Differently from 9?o, is quite complex, 
however it is easy to show an algorithm that builds it. 

Let !P be a sensible subsystem of 33x with M < oo modalities. Let 

Dm = {(m) I m £ X} U {(m, n) | m, n £ X} ; 

Dm contains the multisets with domain {1, . . . ,M} with at least one and most two elements. 
Letters A,B,C,... will temporarily range over elements of Dm- \A\ € {0, 1} is the cardinality 
of A (please notice that |<m, m)| = 2 !!!). 

By the way, one can show that Dm has | M(M -i- 3) elements. 
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Figure 4.9: An example of quasi-connected module, with principal premises {ui, U2} and 
principal conclusions {1/4, Mg, Uj]. Notice that M3 cannot be a principal premise. 

Definition 4.4.9 We define the binary relation 9?^ on Dm by: 

• ifP has Pc,(m), then (m) 9tA<q) and Vs<m, 5) 3{^{q, s); 

• ifP has Pq{m, n), then {m, n) JJa (q); 

• if!P has YqK n), then (q) 9?A<in, n), <q) Vs<q, s) ^^^(m, 5), <q) ^^^(n), and V5<q, 5) ^^{n, s), 
S^A is the transitive and reflexive closure of 91 a- 

?{a is not, in general, a partial order, even restricting to polytime subsystems. 

Lemma 4.4. 10 

P is saturated iff = 

Proof. Look back at the definition of 9?a arid at the definition of S^P). Their definitions are 
step-by-step analogous. So, P is saturated iff its 9Ja relation is the greatest possible, i.e. 9?a is 
closed. □ 

If E is a module (not necessarily connected!) of P and A,B e Dm, we write A : T, : B 
meaning that E has (at least) \A\ premises labelled with modal formulas with modality s 
for every element s of A, and (at least) |B| conclusions labelled with modal formulas with 
modality s for every element 5 of B. We call principal premises and principal conclusions 
these |A| and \B\ edges. We say that E is quasi-connected if for every principal premise there 
is a CS-path connecting it to a principal conclusion, and for every principal conclusion there 
is a CS-path connecting it to a principal premise. In particular every connected module is 
also quasi-coimected. An example is given in Figure 4.9 

Lemma 4.4.1 1 

If A 91a B tlien tliere exists a module A : E : B quasi-connected. 

Proof. If A9?aB, then either A = B, or (A, B) is in the reflexive closure of 9? a- Firstly, we 
consider the case A = B. If A = (m), the thesis can be proved taking as A : E : A the proof net 
that contains just one identity node. If A = (in, n), the thesis can be proved taking as A : E : A 
the disconnected module containing two identity nodes, one introducing m and the other 
one introducing n. In both cases E is quasi-connected. 

Now lei A B. In this case (A, B) is in the reflexive closure of 9?a- Being Dm a fi- 
nite set, A 9? A B implies that we can find a finite number of elements A, such that A = 
Ao 9?A Ai 9? A A2 9?A • • • 9iA = B. We proceed by induction on k. 
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Uk - 1, that is A 9^ a S, we know that one of the following holds: 

1. A = (m, n) 9Ia <q) = B and !P has P^{m, n); 

2. A = (q) 9?A<m, n) = B iff ^ has Yp(m, 

3. A = (q) 9?A<q') = B and !P has Pq'(q) or Yp(q', s) for some s. 

4. A = (q,n)9?A(Q'/n) = B and !P has Pq'(q) or Yc(q', s) for some s. 

In each case we can build a module A : T. : B quasi-connected: 

1. one single "P has Pq(m, n); 

2. one single Y,,(iti, n); 

3. one among P(,'(q) and Yq(q', s). 

4. two connected components, the first one having one among Pq'(q) arid Yq(q', s), the 
second one having a single identity node. 

lfk> 1, letusconsider A'JIa Ajt-i 9Ia By inductive hypothesis there exists a quasi-connected 
A : El : A/^.j . Then, Aj._i 5? a B tells us there exists a quasi-connected A]^_i : 1,2 : B, as 
previously showed. Plugging the principal conclusions of Li in the principal premises 
of L2 we obtain a quasi-connected module A : E : B as required. 

□ 

Lemma 4.4.1 2 (Polynomiality Criterion Based On JJa) 

Let Pbe a sensible subsystem. P has a dangerous chain of spindles iff there exist m,n, q 
such that (q)yi^{m,n)%^{q). 

In other words, if 'P is polytime, the graph of 9? a may contain cycles; however it carmot 
contain cycles with both elements of cardinality 1 and cardinality 2. 

Proof. (1) Let us assume P has a dangerous chain © U U is composed of a contraction 
u, let us say Yp(r, s), a box b with 2 premises, and three CS-paths t, p,x of (possibly many) 
promotion boxes and contraction nodes, where t and p connect u to & and x exits from b and 
terminates with modality p. By construction, (p) '^^i^, s) JJa^P)- 

(2) Let us assume (q)'iRA(TiT, n)9iA(Q)- Using Lemma 4.4.11 we can build the quasi- 
connected modules (q) : Ei : (m,n) and (m,n) : E2 : (q). Plugging the principal conclusions 
of El with the principal premises of E2 we get a quasi-connected module (q) : E : (q). But 
notice that, thanks to the definition of quasi-coimectedness, E is also a dangerous chain of 
spindles. □ 

Corollary 4.4.1 3 (Polynomiality of Sensible Subsystems is Decidable) 

Let P be a sensible subsystem, and let us assume that the promotion rules of P are de- 
scribed by means of regular expressions. Then, the question "Is P polytime?" is decidable. 

Proof. Notice that M, the number of modalities in P, is finite, so also the number of possible 
promotion rules "described by means of regular expressions" is finite. So, the algorithm is 
the following. 

1. Make a list of all the rules Yq(m, n), Pq(m) and P(,(m, n) belonging to P. This is possible 
because (i) P has M < 00 modalities, and (ii) P is finitely described. So this list is finite. 
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2. Build the relation "J^a- Each rule found in (i) gives at most a constant number of couples 

in3?A. 

3. Build the relation 9?a/ the transitive and reflexive closure of J^a- 

4. Exhaustively search for q, m, n such that (q) 'iHA(iTt/ ii) 5?a(q)- 

□ 

The forthcoming Proposition 4.4.15 is one of our most useful results. It is interesting both 
in a theoretical and in an applicative perspective, thanks to the simplicity of the definition 
of The reader can compare Proposition 4.4.15 and Proposition 4.4.5; he will find some 
analogies, due to the fact that P and its augmented subsystem S{P) share the same relation 
9?^. Recall that every transitive relation can be completed to a partial preorder (Section 2.10). 

Definition 4.4.14 is the smallest partial preorder containing 9i-[-. 
In the following statement, = denotes the equivalence under 
Proposition 4.4.15 (Criterion of Polynomiality based on ^i-^) 

Let ^ c 58x be sensible. P is polytime if and only if, for every 6 elements qi = q2 = ti = r2 = 
si = S2, i.e. all equivalent under 91-^, P does not contain both Ypj(ri,si) and Pq2(r2, si). 

Proof. P is not polytime iff P builds a dangerous spindle a : (E U x) : By definitions, this is 
equivalent to say that P has: 

• a contraction ^aib, c), 

• a promotion Pd{e, /), 

• a CS-path beginning with modality b and ending with modality e, 

• a CS-path beginning with modality c and ending with modality /, 

• a CS-path beginning with modality d and ending with modality a (this is x)- 

And this is equivalent to say that P has a contraction Ya{b, c) and a promotion Pd{s,f) such 
that a = b = c = d = e = f. □ 



4.4.3 Maximality in MS 

We now consider the following question: is there a notion of largest subsystem of MS which 
is polytime? In this Chapter we will show that there is not a single greatest subsystem, but 
a whole class of maximal subsystems. The word maximal is here used in a technical way, 
according to algebra and set theory (think to maximal ideals [Vin03], or to maximal elements 
of a partial order [DP02]). Here we will define formally what is a maximal subsystem, and 
we will give some examples of them. Later, we will prove a Structure Theorem 4.4.25 that 
characterizes, among the sensible subsystems, all and only the maximal ones. The Structure 
Theorem is completely syntactical, it describes exactly which rules a maximal subsystem 
must have. 

The study of maximal subsystems is important for at least two reasons: 
(a) The maximal subsystems are useful in themselves, as they supply the greatest sets of rules, 
and nevertheless they are polytime. This has impact on the questions that we posed in the 
Introduction: if we search for a subsystem able to fill the question mark (3) in Figure 1.2, 
it is a good idea to begin the search from the maximal subsystems. 
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Figure 4.10: A picture of the poytime, non-polytime and maximal subsystems of 23x. 



(b) As we said, the Structure Theorem is completely syntactical; as a corollary, we shall find 
another syntactical characterization of the polytime subsystems based on maximality 
(Proposition 4.4.32). 

On the other side, we shall see in Chapter 5 that the maximal subsystems do not have good 
computational properties. Only few of them enjoy the cut-elimination property; and almost 
none of them is confluent. We will recall in Chapter 5 what this means exactly. Here, we just 
point out that the two properties are desirable if we want to use a certain subsystem as a 
programming language, and maximal subsystems do not enjoy them in general. We think 
that this problem reduces only partially the importance of maximal subsystems. The problem 
affects the above point (a), but not point (b), so that maximal subsystems are still useful on a 
practical viewpoint. For example, we can imagine to have a non-maximal subsystem "P that 
can be extended in a unique way to a maximal subsystem Q, thus proving that !P is polytime, 
and nevertheless f is confluent. This is the situation, for example, of soLAL (Section 6.2). 

Definition 4.4.16 (Maximal Subsystems) A subsystem 'P c 23x is maximal (for polytime) if 
9 e PMS, and wheneverP c ^' c S^, itholdsP' ^ PMS. 

The picture in Figure 4.10 should help understanding. A weaker notion of maximality 

is: 

Definition 4.4.17 (Relatively Maximal Subsystems) A subsystem'P C 23x of 23x is maximal 
(for polytime) relatively toT c ^SxifP e PMS, and wheneverP <zP' Q T,itholdsP' i PMS. 

In particular, it is interesting to consider maximality relatively to 7" = MS^, i.e. the restriction 
of MS to standard contractions only. 

Definition 4.4.18 (Incompatibility) We will call not compatible a rule R w.r.t. a subsystem 
PifPDiR] i PMS. 
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Some examples. For didactic purposes, we are going to describe some maximal subsystems. 
Most of these subsystems contains the linear kernel K, defined on page 29. 

Lemma 4.4.19 (Trivially Maximal Subsystems) 

The following subsystems are maximal for polytime: 

(a) The subsystem containing every Yp(r, s) for every p,r, s, every P rule, ^« and all the 
rules introducing V, but no W's, nor ^^n, nor -o£. 

(b) The subsystem containing K, every Yp(r, s) and every Pr(s) for every p,r, s. 
The following subsystem is maximal for polytime, relatively to MS^: 

(c) The subsystem containing K and every P rule, but no contractions. 

Proof. We show these subsystems reduce in linear time and they are moreover maximal. 

(a) Consider a subsystem without W, (2)^, -o£. In this case we can add all the rules we want, 
including P and Y rules... indeed we will never use them! That's because there is no way 
to have more than one premise in a proof net. The subsystem reduces in linear time. This 
subsystem is maximal: for example, let us try adding W; of course it is not compatible 
e.g. with Ym(m, m) and Pm(TTt, m). 

(b) Second case, consider a subsystem made up of all and only rules Pr(5), for all r, s. Here, 
there is no possible duplication, so we can add every Yp(r, s) and W. This last subsystem 
is maximal. Indeed, add some rule Pr(s, q); then cut it with Ps(r), Pq(r) and Yv(c), q), and 
you have built an exponential chain. 

(c) At last, we could have W and all P's, but no contractions. Also this subsystem trivially 
reduces in linear time. This is a maximal subsystem too: if we add Y'", that rule is not 
compatible with P,n(iTt, m). (However note that some other Yp(r, s) could be compatible). 

□ 



Lemma 4.4.20 (One Modality Maximal Subsystems) 

Let X = {!}. The following two subsystems P Q are the only maximal subsystems 
relatively to ©x: 

(a) The subsystem containing Y\ every P rule, o^, ^'fi and the rules introducing V, but 
neither W, nor 0^, nor -o£. 

(b) The subsystem containing K, Y^ and Pi(l- ); 

(c) The subsystem containing K and Pi(l*) rules, but no contractions. 

Proof. Note that in one-modality subsystems the only possible contraction is Y^, so 93x = 
Sx^- First, we show these subsystems are maximal: 
(a),(b) Analogous to Lemma 4.4.19 (a) and (b). 

(c) There is no way of getting a spindle, so this is polytime. Of course we carmot add Yi(l, 1) 

because it's not compatible with Pi(l, 1). 
Now, the point is, are there some more maximal subsystems? We prove there are not. If "P 
is maximal and does not contain Y^, it must be (c). If P is maximal and contains Y^, it can 
contain Pi(l*) (so it must be (b)) or it doesn't (so it must be (a)). 

What about V, ®, -o? Except for the trivial case (a), they are not dangerous, and so they 
are needed in every maximal subsystem. □ 
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Basic properties of maximal subsystems. From now on, we will consider sensible and 

maximal subsystems. Our main result is the Structure Theorem 4.4.25. In order to prove it, we 
shall study the relations "iR-i-, 5?a, ^^a among the modalities, that were defined in Section 4.4.2. 
We are interested in particular to understand whether these relations are linear or partial 
orders or preorders. The definitions of linear/partial (pre-)orders were given in Section 2.10. 

In this paragraph we give some basic properties about the relations ^R-]-, 9^ a, ?f a; they will be 
required to prove the Structure Theorem. We give also some other, unrelated, properties. In 
particular. Lemma 4.4.21 reveals the relationship between maximal subsystems and saturated 
subsystems, that were studied in Section 4.4.1, and Corollary AA.IS shows that the question: 
"is P maximal?" is in most cases decidable. 

Lemma 4.4.21 (Maximal vs. Saturated Subsystems) 
All the sensible maximal subsystems are saturated. 

Proof. By contradiction, let P be maximal but not saturated. Then, Si^V) would be polytime 
for Lemma 4.4.4; and so !P would not be maximal, a contradiction. □ 

However the converse is false; for example, a sensible subsystem with all and only the 
closed boxes, and without contractions, is trivially saturated, but it is not maximal. 



Lemma 4.4.22 (Rules that a Maximal Subsystem Must Contain) 
Let P be a sensible maximal subsystem. 

1 . IfP has Pcj(m, n, n) it also has Pq(m, n*). 

2. IfP has Pq(m, n) and Pq(n, r) it also has Pq(in, n, r). 

3. Vq E X, has at least Pq(c)-). That is, 9i| is reflexive. 

4. «A = ¥2. 

Proof. The justification to the first point develops as follows. Sensibility is needed by 
Proposition 4.3.40. !P cannot have Pq(Tn, n*) if such a rule generates a spindle. In that case, 
the same spindle exists thanks to Pq(m,n, n) against the maximality of T. An analogous 
argument can be used to justify the second point. The third one is obvious because Pq(c(^) 
has at most an assumption. □ 



Corollary 4.4.23 (Maximality is Decidable) 

Let !P be a sensible subsystem, and let us assume that the promotion rules of P are de- 
scribed by means of regular expressions. Then, the problem "Is !P maximal w.r.t. polynomial 
time?" is decidable. 

Proof. We present a very naive algorithm that solves the problem. Notice that P has M < oo 
modalities, so the possible rules Yq(n, m), Pq(m) and Pq(m, n) are finite. So, (1) for each such 
rule R, check if the subsystem !P U [R] is polytime. This is possible thanks to Lemma 4.4.13. If 
so, we are sure that T is not maximal. Otherwise, (2) we must check that the rules described 
by Fact 4.4.22 are in !P. No other rules can be considered, so the subsystem is maximal iff the 
answer to (2) is positive. □ 
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Lemma 4.4.24 a Linear Preorder) 

Let !P be a sensible maximal subsystem. Then 31-^ is linear preorder, i.e. transitive, reflexive 
and connected. 

Proof. is always transitive. Here it is also reflexive, because of the presence of Pq(q). We 
have to prove that it is connected, that is: Vm, n (iTi9?-['n V n9i-[- m). Let us assume that P 
is maximal and we will show that n'iii m. This implies that adding P„(m) to P 

gives a non-polytime subsystem f". So we can find a dangerous spindle q : (E U : Q in 
containing Pn(iTt)- This spindle is not in !P, however in f we can find a module E' U x' such 
that, adding a correct number of instances of Pn('i^) boxes, gives E. In particular we find in 
E' (and so in P) two paths, one from modality q to m and the other one from n to q, that can 
be composed to create a path from n to m: so n m. □ 

So, from now on, we shall write also :< in place of 91^, < for the corresponding strict 
preorder, and m = n whenever both m :< n and n < m. 



Differently from 5J-[-, is not a preorder; in general it is not even connected. For example, 
consider X = {1, 2, 3, 4, 5}, 



and satisfies the hypothesis of Lemma 4.3.33. But it is not maximal: it can be embedded in 
some other maximal subsystem !P' . We are not interested in the exact form of P'; we just want 
to observe that P' cannot have neither the rule Yi(2, 3), nor Pi (2, 3), because both of them 
permit the construction of some dangerous chain. So both ^ (<1) ^{^{2, 3)) and ^ (<2, 3) 'Ka<1))- 



That is, JJa is not connected. 

So, it turns out that the relation :< has a great importance in the study of maximal systems, 
and we shall use it (instead of ?Ja/ or other) in proving the Structure Theorem. 

Structure Theorem for Maximal Subsystems. We are going to restrict our attention to the 
subsystem in which <isa linear order (i.e. a connected partial order, see Section 2.10). Later, 
we shall see that this assumption is fully justified, i.e. maximal subsystems whose < is a 
linear order are more interesting that the other ones. 

Theorem 4.4.25 (Structure of Maximal Sensible Subsystems) 

Let Pbe a sensible subsystem with a linear < and with modalities in X. P is maximal iff P 
contains exactly the following rules: 

1 . all the rules Y(,(m, n) for every choice of q < m, n in X; 

2. all the rules Y(,(q,n) for every choice of q < n in X; 

3. all the rules Pq(q- , m*, . . . , mp for every choice of mi, . . . , mjt q in X; 

4. only one among Yq(q, q) and P(,(q*, m*, . . . , m*), for every mi . . . , m/c < q in X. 

Proof. "Only if" direction. We want to prove that every system P containing the rules 
described in points 1, 2, 3, 4 is maximal. The order < prevents to construct dangerous 
spindles thanks to its linearity. So, Proposition 4.3.40 implies P is polytime. Moreover, if 



P = {P4(3, 4), Y4(l, 4), P5(5, 1), Y5(5, 2)}. 



P is polytime because ?f-|- is a linear order: 



3-i4<l<5<2 
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Yq(q, q) belongs to P, adding Pq(q*, m*, . . . ,m*), against point 4, would allow to construct a 
dangerous spindle. The same would be by starting with Pq{q*,m*, . . • ,m*) in P and, then, 
adding Yq(q, q). 

"If" direction. We assume P is maximal and we want show that it must contain at least 
all the rules described in the statement. We prove it by contradiction first relatively to points 

1, 2, and 3, then to point 4. A contradiction relative to points 1, 2, and 3 requires to assume 
that P has not a rule R described in 1, 2, 3. Let !P' = P U {R}. The maximality of !P implies 
that P' is not polytime. Now, thanks to Proposition 4.3.40, P' ^ PMS implies that P' can 
build a dangerous spindle r : (E U ;^;) : r. We are going to see that this causes various kinds of 
contradictions. 

Let u be an instance of R — Yq(m, n). For example, we can assume that one of the two 
distinct CS-paths in E crosses u from qA to mA. By definition of <, r < q < m < r, so 
contradicting the linearity of <. 

Let u be an instance of R = Yq(q, n). The previous case excludes that one of the two distinct 
CS-paths in Z, crosses u from qA to nA. So, it must cross u from its premise, labeled qA to its 
conclusion, labeled qA. This means that x -.JL' D x' obtained from T.U x just removing u, 
exists in P, which could not be polytime. 

The case R - Pq(q, rrii, . . . , mjt) combines the two previous ones. 

Now we move to prove point 4. Without loss of generality, we can prove the thesis for 
Pq(q, q) instead of Pq(q*, rrt*, . . . , m*). By contradiction, let P be maximal and let the thesis be 
false. So, there are Ri = Yq(q, q) and R2 = Pq(Q/ q) such that either P has both of them, or P has 
none of them. In the first case the two rules would build a spindle, making P not polytime. 
In the second case, neither Ri nor R2 belong to P. This means that neither Pi = P U {Ri ), 
nor P2 — P D {R2} are polytime, because, recall, P is maximal. So, there have to exist both 
ti : (El U ) : Vi in Pi that involves an instance Ui of Ri (Figure 4. 11a), and : (E2 U Xi) '■ ^2 in P2 
involving the instance ^2 of R2 (Figure 4.11b). Thanks to Lemma 4.3.38 we can assume that 
all the labels in Ei U and E2 U X2 are of the form nA, for a fixed A and some n's. Then, ui 
must be the principal contraction of Ej . If not, we could eliminate it as we did for u in point 

2, proving that P is not polytime. This is why ri = q in Ei U Xi of Figure 4.11a. Now, let @ 
be the module obtained from Ei U xi removing Mi; we can build in 'P (Figure 4.11c). © has 
two premises qA and one conclusion qA, exactly as the box ^2 in E2. So, we can replace ^2 in 
E2 U X2 with 0, getting a new dangerous spindle r2 : (E U x) : 12 in P- But (LU x) ^ FN{P), so 
that P is not polytime. □ 

Thanks to the Structure Theorem, we can count the maximal subsystems: 
Corollary 4.4.26 (Number of Maximal Subsystems) 

Let #X = M. There are 2^ maximal and sensible subsystems of 93x, whose < relation is a 
linear order. 

Proof. 2^ because, for each of the M modalities, one has to choose among the rule P;(r) or 
Y'. □ 

It follows an observation about the spindles relation 3?^/ defined in Section 4.4.2: 
Corollary 4.4.27 (?{o coincides with <) 

Let Pbe a maximal sensible subsystem whose 91^ (or <) relation is a linear order. Then its 
9?<> is a strict linear order, and so it is equal to <. 
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Figure 4.11: The proof nets used in the proof of Theorem 4.4.25 

Proof. Thanks to Structure Theorem, for every m <n we can build a spindle using Y,n(m, n) 
and Pn(iTt/ n), and so m n. □ 

If 9?-[- is not an order, the Corollary 4.4.27 may fail. Consider for example X = {1, 2, 3}, 
P = {Pi(l ■ ), P2{r, T, T), P3(r, T, 3*), \i{x, y) for x,y < 3}. 
This is maximal, 1 9?o 2, 1 5?o 3, but 2 and 3 incomparable. 

What if < is not an Order. We shall see that this case can be brought back to the previous 
one. If < is a linear preorder over X, then it naturally induces a linear order over the quotient 
X' = X /=, where m = n iff m < n and n < m (cfr. Section 2.10). m denotes the equivalence 
class of m. 

Definition 4.4.28 (Natural Quotient of f) LefP c 93x sensible. Recall that < is a preorder, 
andletX' the quotient ofX as just described. LefP' c 23x' be the smallest subsystem of ^x' 
such that: 

Y,(m,n)6!P ^ \^im,n)er'. 
V is called natural quotient of P. 
Fact 4.4.29 

For every P, the relation < of P' is a linear order. 
The Fact directly follows from the construction. 
Lemma 4.4.30 (Linear Orders are Interesting) 

Let :P c 93x sensible, and P' c be its natural quotient. Then, P is polytime iff P' is 
polytime. 

Proof. If !P can build a dangerous chain of spindles, then by construction P' can build 
the same chain, too. 
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"<=". If P' can build a dangerous chain of spindles @U x, then we are not sure that !P can 
build the same chain. Indeed, it is possible that (1) m, n £ X have been collapsed into m e X', 
(2) I,' contains two nodes e.g. P^(...) and Y-;^(...) connected through a cut, but (3) such rules 
arrive from the rules Pmi--) arid Yn(...) of "P, that cannot be connected through a cut. But, 
by construction, in that case m < n, so !P can build a CS-path t whose edges are all labelled 
with modal formulae, the first one with modality m and the last one with n. t can be used to 
connect the rules Pmi--) and Y„(...), thus allowing the construction of I,' U x'- ^ 

We have seen that the Structure Theorem 4.4.25 holds only for sensible and maximal 
subsystems whose < relation is a linear order. Here we generalize it. If < is a preorder, but 
not an order, the equivalent modalities must be considered all equal: 

Corollary 4.4.31 (to the Structure Theorem of Maximal Sensible Subsystems) 

Let c 93x be a sensible subsystem. P is maximal iff P contains exactly the following 

rules: 

1 . all the rules Yq(m, n) for every choice of q < m, n in X; 

2. all the rules Y(,(q',n) for every choice of q < n and q = q' in X; 

3. all the rules Pq(q'', m*, . . . , m*) for every choice of mi, . . . , mjt < q and q = q' in X; 

4. only one among Yi,(q, q) and Pq(q*, m*, . . . , m*), for every mi . . . , mjt < q in X; 

5. whenever P has the rule Yq(q, q), and qi = q2 = qs = q, then P also has Yi,j(q2, qs). 

6. similarly, whenever has the rule Pq(q*,m*, . . .,mp, and qo = qi = . . . = qf = q, then P 
also has Pqo(Pi/ ■■■,(^t, m*, . . . , mp. 

Proof. Every two equivalent modalities q = q' must be considered the same, as it is possible 
to build a CS-path connecting them. □ 



A syntactical criterion for polytime soundness. At last, we can derive a criterion for 
polynomial soundness based on maximality: 

Proposition 4.4.32 (Criterion of Polynomiality based on Maximality) 

Let c ©X be any sensible subsystem, and P' c ^B^' be its natural quotient (Defini- 
tion 4.4.28). Then, the following are equivalent: 

1 . !P is polytime. 

2. P cQ for some (3 c 93x maximal. 

3. P' is polytime. 

4. P' c Q' for some Q' c S^' maximal. 

For a given P, it is easy to verify the condition of point 2., using the Corollary 4.4.31 to the 
Structure Theorem, or the condition of point 4., using directly the Structure Theorem 4.4.25. 
Proof. 

1. o 3. Already proved in Lemma 4.4.30. 

2. ^ 1. IfP <zQ and Q is maximal, then Q e PMS, so P 6 PMS because of Lemma 4.1.8. 
4. ^ 3. Exactly as 2. => 1. 
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3. ^ 4. We have shown that the relation 'ii-^ for P' is a linear order. If "P' is polytime, then 
it cannot build dangerous spindles. As a consequence, all the Y and P rules in "P' 
respect the constraints on X requested by Theorem 4.4.25. On the other side, P' is 
polytime and maximal, so it cannot build dangerous spindles (Proposition 4.3.40). As 
a consequence, also the constrains to the rules Y and P requested by points 3. and 4. 
of Theorem 4.4.25 hold. We have shown that all the rules of P" are among the rules of 
some larger maximal subsystem Q' . 

1. =^ 2. We have two proofs of this. On one side, it is possible to adapt the proof of 3. => 4, 
using Corollary 4.4.31 instead of Theorem 4.4.25. We prefer to follow a different proof. 
We already know that !P' is polytime, contained into some maximal Q' c S^' . So, Q 
can be build as follows. <3 is a maximal system described in Corollary 4.4.31, with 
modalities in X and with the following partial order over X: m < n iff Tn < n. Notice 
that this is not the partial order induced by P, but an extension of it. 

□ 



4.5 Infinite modalities 

Subsystems with infinite modalities are not sensible by definition. Moreover, they do not 
have any practical application, because no calculator will handle them. And nevertheless, 
they are very natural in a theoretical perspective: why 2, or 3, or 43 modalities, and not all 
the possible natural numbers as modalities? 

If the subsystem P has infinite modalities, the Polynomiality Criterion 4.3.40 fails, as we 
see in the following example. Consider X = IN, and the subsystem 

P = {linear rules) U {P„{n, n) | n e N} U {Y„(n + 1, n + 1) | n 6 N). 

P does not build any dangerous spindles, however it can build arbitrarily long chains of 
spindles, using always different modalities, so that P is not polytime. 

Now, we will prove some conditions for the polynomiality of some subsystems with 
infinite modalities. Recall that / 9?o / means that P can build a spindle, starting with modality 
i and arriving to a modality ; (see page 70). 

Lemma 4.5.1 (A Sufficient Condition for Polynomiality) 

Let P c MS]N be a system with infinite modalities. If 3n e N . . . , z„ e N {k dl^ iz . . . in), 
i.e. if P cannot build any chain of n spindles, then P is polytime. 

Proof. Observe that Proposition 4.3.32 still holds, as it has not hypothesis on the number of 
the modalities. Our hypothesis says that there is a bound n to the number of consecutive 
spindles that compose a chain of spindles; so Lemma 4.3.32 implies the system is polytime. 
□ 

We call sensible'" a system with infinite modalities that, apart from this, respects the 
definition of sensible subsystem. 
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Lemma 4.5.2 (A Sufficient Condition for Non-Polynomiality) 

Let P be a sensible"" system. If Vn € N 3h, ...,in e N (h 9?o ii • • • in), i-e. if "P can 
build chains of spindles k : 0„ : z„ arbitrarily long, and moreover the size of these chains is 
|0„| = 0(n), then P is not polytime. 

Proof. For every n we find a chain of n spindles. This chain can be chosen with size 0(n) by 
hypothesis, and depth 1, thanks to Lemma 4.3.38. So, following the proofs of Lemma 4.3.35 
and 4.3.39, we understand that "P is not polytime. □ 

We can see that there is a third, possible case, not contemplated by the two previous 
Lemmas. This is the case in which P can build chains of spindles arbitrarily long, but 
however their size is very big, e.g. 0(2"). In this case, actually we don't know if P is 
polytime or not. If is saturated and sensible"", the previous Lemmas can be extended in 
order to include all the three cases: 

Corollary 4.5.3 (A Polynomiality Criterion for Saturated Subsystems) 

Let P be a subsystem sensible"" and saturated. Then P is polytime if and only if 3n e 

N $h, ...,i„e]N ih 9?o Z2 9?o • • • «o k)- 

Proof. "<=". If 3n € Njzi,. . e N(zi3?o/2 9?o • . .9?o z'n), then ;P is polytime for Lemma 4.5.1. 
"=^". Let Vn 6 N 3ii, ...,in e N (fi "Jfo i2 • ■ • in)- This means that, for every n, a chain 
of spindles can be built. Notice that, whenever m : L : n is a spindle, the hypothesis of 
saturation let us to create another spindle m : L' : n with just one box and one contraction. 
As a consequence, from 0„ it is possible to build another chain of spindles 0^ with size 0(n). 
Lemma 4.5.2 can now be applied. □ 

Corollary 4.5.3 highlights the difference between sensible and sensible"" subsystems. For 
sensible"" subsystems. Proposition 4.4.4 fails: it is possible that a sensible"" subsystem P is 
polytime, while its augmented system is not. 

A different (but similar) kind of polynomiality can be proved, in analogy to Lemma 8.1.5: 

Lemma 4.5.4 (A Sufficient Condition for a Weak Polynomiality) 

Let P c MSx be a system with infinite modalities. Let us suppose that P cannot build 
dangerous spindles. Let us suppose moreover that (i) there is a linear ordering among the 
modalities of X, (ii) this linear order is a well-ordering with order type at most co, and (ill) the 
rules of P respect this ordering. Then, there exists a family of polynomials Ip^,mW I d,M e 
N} such that for every IT e FN{P) with depth at most d and whose modalities have order-type 
at most M, [n] and ||n|| are bounded by p5,M(in|). 

Proof. The long hypothesis about the well-ordering is needed to obtain that, whenever 
n — >* Z, then also the modalities of E have order-type at most M. Now, if P is a subsystem 
that uses only the first M modalities of the ordering of X, we apply Proposition 4.3.40 and 
we find that P is polytime. Finally, we put the obtained polynomials all together. □ 
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In this Chapter we will face two properties that, traditionally, are considered indefeasible in 
light logics: cut-elimination and confluence. A logic enjoys the cut-elimination property if every 
cut inside a proof can always be reduced. A logic enjoys confluence (or: it is Church-Rosser) 
if whenever a proof can reduce in two different ways, then the two reducts may still reduce 
to a common form. Such two properties are not guaranteed for subsystems of MS. 

In Section 5.1 we shall characterize, among the maximal subsystems, those ones enjoying 
the cut-elimination property. In Section 5.2 we will see that almost every maximal subsystem 
is not confluent. We shall also see some properties that force a subsystem to be confluent. For 
example, the subsystems that have cut-elimination and that use only standard contractions 
(i.e. of kind Y,i,(iti, m)) are also confluent (Lemma 5.2.6). 

5.1 About Cut-elimination 

Fact 5.1 .1 (Cuts Eliminable in the Linear Kernel) 

Let P c ^-Bx. All the linear cuts can always be eliminated. If P contains the linear kernel, also 
the gc cuts can be eliminated. 

Proof. The linear cuts annihilate, without any need of new nodes. The gc cuts may create 
new nodes, but all these are among the nodes of the linear kernel. □ 

Fact 5.1 .2 (Cuts Eliminable in Saturated Subsystems) 

Let !P c be saturated. Then, every [P/P] cut can be reduced. 

Proof. By definition of saturation. □ 

Fact 5.1 .3 (Cuts Eliminable in Sensible Subsystem) 

Let f c Sx sensible. Every cut involving a closed box is reducible. 

Proof. The definition of sensible subsystem requires both the presence of all the closed boxes 
and the downward closure. □ 
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Proposition 5.1 .4 (Characterization of Sensible Maximal Subsystems with Cut-Elimination) 

Let us consider "P c MS sensible and maximal w.r.t. polytime soundness, such that its 9?-^ 

relation is a linear order. Then, P enjoys cut elimination iff it exists q € X such that 

(i) for all the modalities m, with m<q,'P has V", and so not Pmim*); 

(ii) for all the modalities m, with q <m,'P has Pm{m*), and so not Y"\ 

Proof. Let us assume there exists such q; we want to prove that P enjoys cut-elimination. 
The only problematic ns are [P/P] and [P/Y]. If a box Pin(ni,. . .,n;;,r) is cut with a box 
Pxi^i,- ■ .,5;), the linear order says that V/,/, s, < r and ny,r < m. The cut must reduce to 
Pmi^, q)- There are three cases. (1) If at most one among the n,'s and sy's is m, then the rule 
Pmi^, q) is in ^ for maximality. (2) If 2 or more among the n,'s are m, then the P has the 
rule P,„(rn*) by maximality, and so it has also Pm{^, s). (3) If 2 or more among the n/s and 
5j's are m, and at least one among the sy's is m, then r = m and one of the boxes is in fact 
Pni(m, m, . . .); again, for maximality P must have the rule Pm(n, s). So, let us consider a cut 
between a contraction and a box. There are several different cases. (1) If the box is closed, 
the reduction can be performed for downward closure. (2) 'Y^im, n), with s < m and s < n, is 
cut with Ps(ri, . . . ,X]^,t) with r, < 5 and f < s. This can be reduced by maximality, using rules 
Pm(5, ■ ■ ■ , 5, m), Pnin, r/„ s), Y,;(5, r,) and Yt(m, s). (3) Ys(s, s) is cut with Ps(ri, . . . , r^, with 
r, 5 and t < 5. Of course s ^ q, so we can reduce it using rules Ps(ri, .. .,Xk, t), Y*' and Y^ (4) 
Symmetric: Y5(m, n), with s ^ m and s ^ n, is cut with P5(ri, ... ,Xi, s*) with r, < s. Now q < s, 
so we can reduce the cut using rules P,i,(m*), Pn(n*, s*), Yv;(m, n), Y5(m, 5). 

Conversely, let us assume that P does not satisfy this condition. We can find m, n, where 
m ^ n and 3r(m <x <n), such that P has the rules P,n(iTt*) and Y". As an example, the reader 
can try to reduce a cut between Y" and Pn(m, m); it is not possible. □ 

The following improves Corollary 4.4.26: 

Corollary 5.1 .5 (Number of Maximal Subsystems with Cut-elimination) 

Let #X = M. There are M maximal and sensible subsystems of ©x, whose < relation is a 
linear order and that satisfy cut-elimination. 

Proof. M because q of Proposition 5.1.4 can be chosen in just M ways. □ 



5.2 About Confluence 

Intuitively, a rewriting system is confluent whenever each computation leads to a unique 
result. This has been formally stated in Section 3.4.1, where we have recalled moreover that 
different kinds of confluence (called CR, WCR, UN) exist for ARS. In a first moment, when 
our aim was just to study polynomial soundness of our subsystems, confluence was not an 
issue. But, when we are interested also to programming inside a subsystem P, confluence 
becomes a useful property: each program comes to a unique result. In this Section we will 
provide some condition that allows a subsystem to be confluent (Corollary 5.2.2); but, more 
importantly, we show that most of the maximal sensible subsystems are not CR (Lemma 5.2.4). 

We rephrase the properties CR, WCR, UN in terms of proof nets. In that way, we will 
never need to refer to ARS. 
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• A subsystem 'P is WCR if, whenever n, Li, E2 e PN(P), n ^ Li and n E2, there exists 
e PN(^) such that Ei and E2 0. 

• A subsystem P is CR if, whenever n, Ei, E2 e PN('P), n ^* Ei and n ^* E2, there exists 
e PN(!P) such that Ei and E2 ^* 0. 

• Let = denotes the smallest equivalence relation containing — >*. A subsystem P is UN if, 
whenever IT, E 6 PN('P) are normal forms, and IT = E, then H = E. 

Recall that WCR is equivalent to CR (cfr. Corollary 3.4.3), and they both imply UN. 

The following is a first, naive, result: 
Lemma 5.2.1 (Confluent Subsystems) 

Let f c Sx sensible. "P is CR iff it satisfies all the following conditions: 

^. UP has rules Yi,(in, n) and Pq(r, s) and the cut of these two rules is reducible, then there 
is only one way to reduce it. 

2. If P has rules Yq(rn,n), Pc(p,r), Pp(5), and both cuts among the rules are reducible, then 
there exists a common normal form for Yq(m,n) m Pq(p,r) n Pp(5) in 1 step. 

3. If ^ has rules Pin(n, r), P„(p, s), Pp(q), and both cuts among the rules are reducible, then 
there exists a common normal form for P,„(n,r) M P„(p, 5) N Pp(q) in 1 step. 

4. If P has rules Pm{n, p, r), Pn(s), Pp{^, and both cuts among the rules are reducible, then 
there exists a common normal form for P„(s) m Pm(n, p,r) n Pp(q) in 1 step. 

Proof. If P does not satisfy these conditions, than it is easy to build some non-confluent 
proof nets. For 3. and 4. use the two suggested proof nets: resp. P,n(n,r) N Pn(p, s) N Pp(q) 
and Pn(5) M Pni(n, p,r) N Pp(q). For 1. and 2. the proceeding is similar, but it is necessary at 
least a pair of identities and a tensor right in order to close the two dangling conclusions of the 
contraction. Sensibility gives the required node. 

Conversely, let us assume P has the given properties. Thanks to Corollary 3.4.3, we just 
need to check the subsystem is WCR. Let us fix proof nets Ei «— n ^ E2 in PN(23x)/ obtained 
eliminating two different cuts c, c' . If c, c' do not affect each other, we just apply both them 
and we obtain a common normal form 0. Otherwise, the only problematic cases involve 
[P/P] and [Y/P] ns; thanks to the 4 hypothesis, P has rules enough to obtain the desired 
common result 0. □ 

The same Lemma 5.2.1 can be rewritten in Corollary 5.2.2 in a more computational fashion. 
Such a new corollary is quite ugly, but we shall see that it implies the important Corollary 5.2.3. 

Corollary 5.2.2 (Confluent Systems) 

Let f c Sx sensible. P is CR iff it satisfies all the following conditions: 

^. \\P has rules Yq(m, n) and Pq(r, s) and the cut of these two rules is reducible, then there 
is only one way to reduce it. 

2. If P has rules Yq(in,n), Pq(p,r), Pp(5), P,n(fl,M), Pn{h,v), Yp(fl,&), Y,„(Ma,z7«) for every 
a (where u - {uq...ua)), and Pq(r, 5), then P has also, for some w,z: Pa{w), Pb{z), 
y^^{wi;,zis) for every jS (where 5 = (sq . . . sb)), and Pm{w,u), P„{z,v}. 
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3. If r has rules Pm(n,r), Pn{P,s), Pp(q), P,n(P,r,s), Pn(q,5), then it has also the rule 
P,n(r,s,q). 

4. If P has rules P,ii(n,p,r), Pn(5), Pp(q), Pm(P/t/5), Pm(n,r, q), then it has also the rule 
P,n(r, 5, q). 

If f is saturated (and so in particular if it is maximal), then the two first conditions are enough. 

Proof. The first part of the statement is a trivial consequence of Lemma 5.2.1. For the last 
statement, observe that the last two conditions are satisfied thanks to saturation. □ 

Corollary 5.2.3 (Confluence is Decidable) 

Let P be a sensible subsystem, and let us assume that the promotion rules of P are de- 
scribed by means of regular expressions. Then, the problem "Is P CR?" is decidable. 

However, in most of the cases the hypothesis of Corollary 5.2.2 cannot be satisfied, as the 
following, gloomy. Lemma shows: 

Lemma 5.2.4 (Maximal Subsystems are not CR) 

Let X have at least three elements, P c be sensible and maximal, whose < relation is a 
linear order. Then, P is not CR. 

Proof. Let r, q, m € X three different modalities such that r ^ q < m. We consider the 
following proof net of PN(!P) (it exists by maximality): 



This cut is reducible in at least two different ways (again, they both exist by maximality): 



At this point, we can still eliminate the [I/_] cuts, and we reach two different normal forms. 
□ 
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Remark 5.2.5 In analogy with Proposition 4.4.4, we had erroneously conjectured that a 
subsystem P is CR iff its augmented SCP) is CR, too. This would simplify a lot the 
study of the confluence of the subsystems. However both the implications of the con- 
jecture are false. We provide two counterexamples, (i) Letting K be the linear kernel, 
P^KU {Pa(b),Pi,ic),Pcid),Pa{c),Pb{d)} is not Church-Rosser because of the lack of rule P„(d); 
but this rule is in SiP), so that this latter is CR. (ii) f^Kvj {Y,,(fl, a), Pdb), \c{b, b)} is Church- 
Rosser while S{P) is not, as it contains Yc(&, b) so that every cut [Pc{b)/\i,{a,a)] can reduce in 
two different ways. 

The following Lemma describes a class of subsystems enjoying CR: 

Lemma 5.2.6 (Some CR Subsystems) 
Let Pq^x such that: 

• P has only standard contractions, i.e. Y'" - Y,n(m,m); 

• P enjoys the cut elimination property. 
Then, P is CR. 

Proof. We have to check the four conditions of Lemma 5.2.1. In this case, all the ns are 
deterministic: there is exactly one way to reduce a cut [Y"VP,n(r)], i.e. it reduces to 




As a consequence, the first condition of Lemma 5.2.1 is satisfied. Let us turn to the cases 
described by the conditions 2-3-4. In all these cases, the cut elimination property assures that 
all the reductions can go on, in two different directions. Case by case, it is possible to see that 
both the reductions arrive to a common proof net. □ 



We thank the referee for the following conjecture. It seems to hold, but we have not 
completed the proof, yet. 

Conjecture 5.2.7 (Cut-elimination Implies a Weak Form of CR) Let P c 23x be a sensible 
subsystem enjoying the cut elimination property. Let Yl e FN{P) reduce to two different normal 
forms Li, 1,2. Then, Ei and E2 have the same underlying graph, differing at most for the labels on 
their edges. 
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Chapter 6 

Interesting Subsystems of MS 



The framework MS is useful only if we are able to identify some interesting subsystems. In 
this Chapter we will attain this target. 

In Section 6.1 we will find a subsystem !P^g in which it is possible to represent only 
functions that execute in quadratic time and linear space (cfr. [ ]). 

In Section 6.2 we present a polytime subsystem soLAL, in which we are able to extend 
the set of SRN programs that we can encode in ILAL. soLAL is made up of many copies of 
ILAL, each one with its own modalities "z!" and "i§". The natural number i is the sort of 
the modality, and it tells how the modality can be used inside a proof net. We will define 
a fragment SRN~ of functions, strictly grater than BC~ but strictly smaller than SRN, that 
can be encoded in soLAL. We shall give two different encodings of SRN~ into soLAL. We 
shall see that, even if they are very different, they lead to the same result. Indeed, whichever 
encoding we choose, every time we simulate the safe recursion in soLAL, we are forced to 
change the type of the functions involved; as a consequence, the obtained function cannot 
be iterated any more. This is why soLAL is not able to encode the whole SRN, but only a 
fragment SRN~. However, this change of type in SOLAL is not as "drastic" as in ILAL, as 
we shall see. We underline that just a few of the modalities of soLAL are really used in our 
encoding from SRN~ into soLAL. So, probably we are not using all its potential expressive 
power. 

A soft introduction to the use of our Criteria. The purpose of this paragraph is to show 
how to use the criteria proved in the previous chapters. In order to do that, we present some 
subsystems and we study their polynomiality. All these subsystems are senszfe/e. LetX = {!, §} 
and K be the linear kernel defined on page 29: K = {cut, I, W, h, ^ji, V^j, V^, -o^, -^£}. 

• KU {Y-, ?!(!•), ?§(!*,§*)} is ILAL, the Intuitionistic Light Affine Logic [AR02]. We can 
prove that it is polytime: indeed no chains of spindles at all can be created in ILAL, so 
that Lemma 4.3.31 can be applied. Notice however that some spindle can be built, e.g. 
V N Pg(!, !); but they are not dangerous. 

• KU {Y', Y!(!,§),Y! (§,§), Pi (!-),P§(!*,§*)} is still polytime, again because no chains of spin- 
dles can be built. This is a proper extension of ILAL. Referring to Theorem 4.4.25, we 
see that this system is maximal with ordering ! < § among modalities. 

• KU {Y', Pi (! • , §*), P§(§*)) is polytime, again because no chains of spindles can be built. Or, 
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as an alternative proof, also Lemma 4.3.33 can be applied. This system is different from 
ILAL: the !-boxes can have some § premises, while the §-boxes cannot have ! premises. 

Another way to show that this system is polytime is using Theorem 4.4.25. It says that 
this system is contained in a maximal system with linear order § <!, which has also the 
rule Yg(!, !). And a system smaller than a polytime system is still polytime. 

• X U {\',P\{\*)} is lEAL, the Intuitionistic Elementary Affine Logic. And indeed it is 
not polytime. To prove this. Lemma 4.3.35 can be used taking the dangerous spindle 
L = Y' N Pi(!, !) and the tautology A = y ^ y. 

Now we will show how to apply the results of Section 4.4.1. 



• The subsystem K U {Y', Y!(!, §), Y^g, §), P^!- ), P§(!*, §*)}, already presented, is in fact the 
augmented subsystem of ILAL. So it is saturated. We already said that it is maximal, 
and indeed recall that every maximal subsystem is saturated. 

• If !P = X U {Y'+,P!(§-),P§(!-,§-)|, then the admissible rules in SCP) are: 



The couple {Y',P! (!,!)} tells us that both P and S{P) are not polytime, for Proposi- 
tion 4.4.5. 

• If !P = X U {Y-, P!(!-, §*), P§(§*)), then P is saturated. It does not contain any spindle (for 
Proposition 4.4.5 it is enough to check the spindles made up of exactly two rules), so it 
is polytime. 

6.1 Quasi-linear Space 



In this Section we define a family of subsystems {'^'j^rs ' ^ ^ ^1 ^^^^ VTS a suitable 

partial order to be defined. For every fixed M, we shall see that 'P^g enjoys the following 
properties: (i) every of its proof nets normalizes in linear time and space, and (ii) the first M 
Church numerals together with a successor, a sum and a predecessor exist as proof nets of 
!P^g. As far as we know, this is the first Light System as asymptotically complex as MLL, 
that simultaneously shows both (i) and (ii). 

As a consequence, we shall prove that 'P^g encodes only functions which execute in 
quasi-linear space and time 0{n'^) (Corollary 6.1.2). 

We underline that a partial version of this system has already been presented in [RV08]; 
however, in that paper we used only usual constrained weakening, so that we were not able to 
encode a "real" predecessor, but only a "moral" predecessor. This latter proof net calculates 
the result, but it is not able erasing all the garbage produced during the computation. The 
free weakening is needed for that. 

Ramified partial orders. A partial order (ITS, ^lts) has LTS as carrier and ^lts as order 
relation. We write rn ^ n whenever m, n cannot be compared under <]lts- The anti-reflexive 
restriction of ^lts is <lts- Let m U n denote the least upper bound (lub) and m n n the greatest 
lower bound (gib) of m, n under :<lts- ^lts is a ramified partial order if it satisfies the following 
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33 - («-l)n 



00 01 02 ^03 - ^On 



Figure 6.1: An example of ramified partial order. The two contraction nodes show how the 
modalities influence the construction of the trees of contractions in 'P^g. 



Y,nun(iTi, n) iff m U n £ LTS and rrt ^ n Y,n(§, n) iff n <jj:s m 



Figure 6.2: The modal rules of P^^. 



conditions: (i) There is § £ LTS such that § <lts m for every m € LTS, and (ii) For every 
m, n € LTS, if both m ^ n and exists r such m, n < r, then m n n = §. 

An example of (degenerate) ramified partial order is N. A more interesting example is in 
Figure 6.1. 



The family jlP^g | M £ n). Let LTS be a fixed ramified partial order, and Xm c LTS be the 
set of elements x such that there are at most M elements smaller than x according to ^lts- Every 
Xm contains §. Every iPj^g is a subsystem of MSx^ whose modal rules are in Figure 6.2. 

The structure of the partial order (LTS, <lts) forces the structure of the trees of contractions 
and boxes to rule out spindles longer that one ring. This is the essential reason why the 
polytime soundness of 'P™ holds. Formally: 



Proposition 6.1 .1 (Polytime soundness of 'P^g.) 

Let !Pj^g be given. There exist ki,k2 such that, for every n £ 'P^y 
[n] < k2 ■ \U\. 



IPII < ki ■ \U\ and 



Proof. We adapt the proof of Lemma 4.3.31 at page 61. 

Let us fix a box b at depth d in n. Let us divide the nodes of n in class-0 and class-1 
as in the previous proof, according to how many spindles there are below them. So, we 
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know that Rn{b) is bounded by the number mo of the contractions and nodes of class 0, 
multiplied by the number mi + 1 of the same nodes of class 1. However, this bound is still 
large. Firstly, we notice that, in fact, only the contractions are really needed: if a path passes 
trough a (gi^/^ node v, then it necessarily arrives from a <Si£ node u; and so only one of the two 
paths outgoing v are effectively used, depending on the path entering u. Secondly, mi = 0, 
because the modality § can never be the premise of a contraction. Third, at each contraction 
the number of the modalities labelling the edges decrease, according to ^lts- So, if M is the 
number of modalities, the tree of contractions has depth at most M. And so it has at most 2^ 
leaves. Vfc Rn{b) < 2^. 

This is not enough yet. If we apply directly the previous lemmas we get a quadratic 
bound, that we do not want. First key observation. The modified weight is defined by 



1 a{u) € {I, cut, W, h. Pi, i, o} 

3 £ {®,V,^,Y} 

2-{Pn{b) + l)-Rnibf a{u) ^ Po 



Trf(n) = Yj ^d{n,u) < mU + 2 (Pn{b) + 1) • Rnibf 

mU + 2-2^ (^nW + 1) < PI, (3 + 22^+1) . 



So the nets reduce in linear time, because [n]^^ < Trf(n). 

However, for i > d, the bound ||n||^ < |n|,- • T(j(n) implied by Lemma 4.3.24 is too high. To 
lower it, recall that if w is a link at level i > d, inside a box b at level d, u can be copied at most 
Rn{b) < 2^ times: ||n||f < 2^ • |n|, is linear, as well as ||n||''. The final statement follows from 
composing, level by level, the obtained bounds. We obtain the constants fci, /c2 that depend 
onMando^Cn). □ 



Normalization. We want understand which cuts can be eliminated in ^j^g, and which ones 
cannot. First of all, let c be a cut [Pm(?/Tt)/^'n(5)]. Here, m <yis n <]lts s. This reduction can 
always be performed, and the reduct is P,n(?/ s). Similarly if the cut involves two §-boxes. 

Now, let c be a cut [Y,i,u„(irt,n)/P,i,u„(r)]. Of course, if r is empty, c can be reduced. 
Otherwise, we assume for simplicity that r = r is a single premise. Here, m, n <a:s irt U n <a:s 
r. If r = in U n, c reduces in a unique way to P,n(iTt) ^ Y,nu„(m, n) M P„(n). For every other r, c 
does not reduce: indeed, the proof net should reduce to Pin(fl) 1X1 Yx(fl, h) N P„(b) for some a, b 
such that X — aub, but these a, b, do not exist thanks to the definition of ramified p.o.. 

Atlast,letcbeacut[Yn(§,m)/Pn(r)],wherem ^lts ^ ^lts i^- In this case, the cut can always 
be reduced, possibly in many ways, to P§(§) N Yr(§, b) N P^ib) for every m <o"s b ^lts ^■ 

Encoding functions in Now, we show that every is strictly extends MLL, even 

though they belong to the same time and space complexity class. A type for Church numerals 
is mCN = Va.m(a -o a) -o §(a -o a), for every in £ LTS. Figure 6.3a shows the net that 
corresponds to the Church numeral n for some n < M. Namely, once fixed M, we can expect 
to represent at most M different Church numerals. 
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Among the functions that we are able to represent there are: (1) a successor proof net 
with type nCN -o mCN for every n <]lts irt (Figure 6.3b); (2) a sum proof net with type 
nCN -o mCN -o (n U m)CN, whenever n ^ m and n U m £ LTS (Figure 6.4); (3) a predecessor 
proof net with type nCN -o mClN for every n <]nrs 'i^ (Figure 6.5). 

It is easy to show that all these proof nets do reduce: for example, they reduce using the 
closed normalization strategy defined on page 35. The result is not necessaily unique, due 
to the non-deterministic behaviour of the cuts [Yn(§, m)/Pn(r)]; anyway, the possibly different 
results may differ only for the labels on their edges, so they all represent the same Church 
numeral. 

If the reader has on hand a coloured copy of this thesis, he will see that we have distin- 
guished two kinds of boxes: in blue, the §-boxes, that are not duplicable; in red, all the other 
ones, that can be duplicated. 

Corollary 6.1 .2 (Space and Time) 

Let Wi, W2 be types that represent the binary words in !Pj^g. For each iv e W, we call 
w>\- Wi, i 6 {0,1}, its representative proof net. Suppose that the size of w, as well as the 
number of edges in w, is O {\w\). At last, let n> Wi h W2 be a proof net of representing 
a function / : W ^ W. Then, / is computable in quasi-linear space and time O(n^). 

The hypothesis of the previous Corollary is usually satisfied for Church binary words. 
Proof. Let us call M the Turing machine that 

1. takes an input w 6 W, 

2. writes on his irmer tape the binary representation of the proof net O N , 

3. reduces step by step the proof net on his inner tape, 

4. translates the result r into the word r 6 W. 

We shall call n = \zv\. We want to show that M executes in quadratic time and space, i.e. 
O(n^). The reader can refer to Section 3.4.2 for the representation of a proof net on the tape 
of a Turing machine. We decide to represent the graph as a list of edges, and each edge is 
couple of nodes, because (a) this representation is the most compact, but also (b) duplications 
are easier. Recall that the boxes are kept separately on the tape. Moreover, we assume that 
erasures can be performed without phisically moving anything, just marking an edge or a 
box as "erased". 

Step 2 takes time and space 0{n logn), as explained in Section 3.4.2. Notice that the size 
of n does not influence the execution speed nor the used space, as it does not depend on n. 

Considering step 3, the inner tape of M contains at each time a reduct of IT N a;; the size 
of of n N a; is always 0(n) because of Proposition 6.1.1, so that the space used on the inner 
tape is always 0(n log n). 

The translation of Step 4 do not require any additional space, and is performed just 
looking at the whole tape, in time 0(n log n). 

So, M executes using space 0(n log n), i.e. quasi-linear. It remains to understand how 
much time it is needed by step 3. We shall give a very rough extimation. A single ns may 
annihilate some edges or boxes. In this case, the ns is simulated by M just moving along the 
tape, in time 0{n log n). Or, a single ns may duplicate a box. The box has size 0(n log n), so 
the duplication requires going forth and back for a total of 0{n^ log^ n) steps. Multiplying by 
the number of ns, M executes in time 0{n^ log'^ n), which is certainly smaller than 0(n^).^ □ 



^To be precise, the function log^ n is asyntotically greater than n^, but smaller than any w'"^*^, for any e > 0. 
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(nLlm)(rt^a) 




Figure 6.4: "Pjj.^- the sum of two Church numerals of type nCN, mCN with n ^ m and 
n u m e ITS. 
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Figure 6.5: "P^^- the Predecessor on Church numerals, with type nCN -o mCN for every 
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Pi\{i^^, /'«§*) for every ji, j„, <i<M 

Pi§ii^', h§', im§') for every /i, ...,]„ <i<M 
Y,!(z!, i\) for every i < M 



Figure 6.6: The modal rules of SoLAL^^. 



/W^!!(m) 




Figure 6.7: The proof nets Crcy<;yf in soLAL, with / < i, for any k. 

6.2 soLAL 

We have pointed out, many times, that we are interested in finding some subsystem P c MS 
able to represent as many SRN programs as possible. soLAL is designed precisely with 
this target in mind. See Section 2.7 for a definition of SRN. Firstly, we will define a family 
of subsystems SOLALm £ 93y, with Y = {z! | z < M} U {z§ \ i < M] for some fixed M > 2. 
Every one of such subsystems is a proper extension of ILAL. Later we encode a fragment 
SRN~ of SRN into soLALm (Proposition 6.2.5). The more, we will come to the same result 
through two different encodings (Lemma 6.2.7and 6.2.8); this, together with some concluding 
observations in Section 6.3, suggests that the complexity of soLAL is really the one of SRN~, 
whatever encoding we choose. The details of the encoding will be postponed to Appendix A, 
for the very interested reader only, because of its length. 

Definitions. soLAL^ (soLAL for short) contains the linear kernel of MS, plus the modal 
rules in Figure 6.6. Figure 6.7 shows an example of proof net we can build in soLAL but not 
in I LAL. The meaning of such a proof net will be explained later on. Exactly as in the previous 
Section 6.1, if the reader has on hand a coloured copy of this thesis, he will see that we have 
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distinguished two kinds of boxes: in blue, the §-boxes, that are not (directly) duplicable; in 
red, the !-boxes, that can be duplicated. The name soLALstandsforsorfed I LAL, because soLAL 
extends ILAL with the introduction of sorted modalities. For example, every il{a -o a) is an 
of-course (modal) formula of sort z, and z§(a -o a) is a paragraph one of sort i§"A abbreviates 
• • i§A, with n > occurrences of An analogous meaning holds for il"A. We observe that 
restricting PpXill 7i§*, . • . , ;„,§*) to Pn{i[^), and ?,§(/!% ;i§*, . . . , /^§*) to P;§(zr, z§*) we get a 
subsystem z'-soLAL of soLAL. Every z-soLAL is ILAL identifying \A = z'§B = §B, for every 
A,B. 

Basic properties. Let 3i-|- the preordering among the modalities of SOLAL^ defined in Sec- 
tion 4.4.2. Observing that the preordering in this case is in fact a linear ordering, we under- 
stand that in soLAL^ it is not possible to build dangerous spindles, so: 

Fact 6.2.1 

For every fixed M, soLALm is polytime. 

Remark 6.2.2 soLAL does not enjoy cut-elimination, because e.g. a cut PiiXi§) XI V cannot 
reduce. 

soLAL is not confluent as well, because the two cuts Pi]ii%) N P;!(z!) N V can both reduce 
to different normal forms. (By the way, we have used Lemma 5.2.1 to find out such an 
example). Here we want to remark why the above two negative aspects, which relate to soLAL 
taken in its generality, are harmless in the case we consider. Indeed, we can certainly adopt the 
closed normalization strategy, already defined on page 35: reduce one instance of the cuts 
[P/P], [P/ Y] only if the lowermost box they involve is closed. All the reductions that we need 
may be performed using such a strategy. Moreover, the normal form we end up with is 
unique. 

Anyway, we conjecture that such a normalization strategy can in fact be avoided, for we 
focus on a very a specific set of proof nets that soLAL can contain. 

SOLAL can prove i§A -o ilA, for j < i and for every A. This is its most important feature. 
This is the reason why soLAL generalizes ILAL: ILAL can prove lA -o §A, but not §A -o lA. 

In soLAL we can define z'W = Va.z!(a -o a) ^ i\{a -o a) -o z§(a -o a) as the type of 
(Church) (binary) words of sort i, and z'S = Va.z!(a ^ a) -o i%{a -o a) as the z'-sort type of (unary) 
strings. Also, from ILAL we recall that a word-coercion proof net, of type W -o § t W for 
any sequence of modalities t, takes a word as argument to rebuild it inside some boxes, the 
outermost being a §-box. In ILAL, the outermost box can only be §. Instead, the type of the 
word-coercion proof nets of soLAL can be also jW -o i\{fkW), for every j < i,k e N, as in 
Figure 6.7. Please, notice z! in front of fcW. soLAL is a kind of hierarchy of systems z'-soLAL 
that can "communicate" at least by word-coercion proof nets that map words from one level 
to the other. 

The restrictions SRN~ and SRN~ of SRN. The reader can find the definitions of recursion, 
linear recursion and linear composition in Figure 2.5. 

Definition 6.2.3 SRN~ is the set containing BC~, plus all the functions that can be obtained 
from BC~ with 1 application of (not necessarily linear) Safe Recursion. 
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Namely, like in BC~, we allow in SRN~ arbitrarily nested linear recursions; moreover, we 
allow the outermost recursion to be non-linear. Moreover, the functions obtained using 
an outermost recursion can be further linearly composed. As an example, the following 
program g is in SRN~ but not in BC~. We omit the projections, to lighten the presentation: 



\g{SiW; y, z) = h{w; y, z, g{w} y, z)) 

The program g{iv; y, z) returns y if w ^ contains a digit '0' that is not the lowermost digit, 
and z otherwise. 

Definition 6.2.4 SRN~ is the least set containing BC~, closed under Safe Linear Composi- 
tion, and closed under Safe Recursion limited to any g, ho, hi e BC~. 

For example, if g{iv; y, z) is as in (*), then h{w, y, z) - s,( ; g{w; y, z)) is in SRN~. 

It holds BC~ c SRN= c SRN~ c SRN. Our goal is to focus on SRN~; SRN= is only 
useful to identify some functions of SRN~ crucial for our proofs. The theorem we want to 
prove is the following: 

Proposition 6.2.5 (From SRN~ to soLAL.) 

There is a compositional map from SRN~ to soLAL, sucli tliat for every / e SRN tine 
proof net '"/"' represents /. 

In the next paragraphs we provide two different proofs for it. 

Following Murawski-Ong's encoding. We will prove Proposition 6.2.5 using an encoding 
perfectly analogous to the one of [ viv^'ud:]. We shall see that it is possible, in that way, to 
encode some non-linear recursion; however their type is not further iterable, so that we are 
not able representing the whole SRN but only its fragment SRN~. 

Lemma 6.2.6 (BC~ in soLAL) 

Every function / e (BC~)"'^ can be represented in soLAL witli type: 

7^ > ;iW, . . . , ;„W, ;§'"(fcW), . . . , 7§'"(fcW) h ;§"'(/cW) 



for every k, every ji, / < / and every m big enougli. 

Proof. If we follow exactly ' ^ ], we get an encoding in which all the sorts are equal: 
)i = . . . = jn = i = k. Here we can be more flexible on the sorts, because soLAL has, in 
particular, the promotion rule ;§"'(A;W) -o k§"'{kW) and the coercion ;iW -o k§{kW). □ 

Lemma 6.2.7 (Non-linear Recursion in soLAL, #1) 

Let us assume tliat g e SRN"'^ and ho,hi e SRN^"^"'^"^^ can all be represented in soLAL with 
proof nets: 



h{zv; y, z, t) - cond( ; w, y, t) 




v,^h^>{^%Q ;vw) ^ {^%^ y§'"(m)) ^ jnkw) ^ y§'"(/cw) 

^^^> (-:^=i ;VW) -o {^%^ j%"'{kW)) -o ;§'"(fcW) . 
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for some io,...,i„,i,k,m. Then, it is also possible to encode the function / e SRN^+"'^ 
obtained by Recursion of g,hQ,hi as a proof net '"/"' of soLAL, whose type is: 

for every i < j. 

Proof. The construction that proves this Lemma is in Figure 6.8. Please notice that such a 
proof net contains some irreducible cuts; anyway, the proof net obtained cutting the non- 
linear recursion with some numerals is closed, and thus it can be reduced starting from the 
closed boxes. □ 

Proof of Proposition 6.2.5. Lemma 6.2.6 shows how to represent the functions of BC~ 
in soLAL. Lemma 6.2.7 shows that it is then possible to apply a non-linear recursion, thus 
representing in soLAL all SRN~ . Now, we want to linearly compose the SRN~ functions, thus 
getting the SRN~ functions. This is possible thanks to the type provided by Lemma 6.2.7. 
Indeed, imagine we want to cut a function / with output type y§'"(fcW) with a function g with 
safe input type ;§"'(fcW). Lemma 6.2.7 assures that, in this situation, / can also be written as 
another proof net /' with output type z§'"(fcW), changing also its input types. Hence we can 
compose g with /' . □ 



A different encoding. As we anticipated, we have proved the same Proposition 6.2.5 fol- 
lowing two completely different approaches. Here, we show the second one. Instead of 
using Lemma 6.2.7, we use the forthcoming Lemma 6.2.8. All the remaining parts of the 
proof of Proposition 6.2.5 are identical. 

Notice that the only difference between Lemma 6.2.7 and Lemma 6.2.8 is in the type of 
the got proof net. The encoding, that here we just sketch, exploits the use of the boxes of type 
i%A -o i\B, so we would expect to reach a result better than the one of Lemma 6.2.7. However, 
this is false. The functions that we got still are non-iterable, so that we again encode the same 
set of functions SRN~. 

Lemma 6.2.8 (Non-linear Recursion in soLAL, #2) 

Let us assume that g e SRN"'^ and ho, hi e SRN^"^"'^"^^ can all be represented in soLAL with 
proof nets: 

V^h^>{^r=Q ;VW) ^ {-^%, i§"'{kw)) -o yrw ^ yr(/cw) 

for some i,m. Then, it is also possible to encode the function / e SRN^"^"'® as a proof net 
'"/"' of soLAL, whose type is: 

'r>{^%o ;VW) ^ {^%^ z§3y§'«+i(icw)) ^ i^'j^'^ikw) , 

for every i > j. 

The encoding that allows the proof of Lemma 6.2.8 is quite heavy. Here we just sketch 
the main ideas. Details can be found in Appendix A. 

The embedding is inductively defined on the structure of its argument. We will 
describe how to build ''f'^+"'^~' m the case that f^+"'^ is (not necessarily linear) recursive, i.e. 
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T;§'«+2(m) 




reverse 



I rf"i 

■A ' 



I /!(/iW)r\ 

m 



y§"'+i(m) 





i ; I Stepi I 

I;o!(A^4 ~ ^ |./i§;!(;iW) t 

^ I Stepp I I coerce i | 




(a) Safe and Linear Recursion 
where we assume n = s = 1, n is projection of its last argument. 



(b) Step; 
and 



are sequences 



of ®K and ®x nodes resp.. Step,-, with e 0, 1, is on the right, and 

A = /!(/oW) ® . . . ® /!(7nW) ® ;!;§'"(A:W) ® . . . » /!/§'" (fcW)®/§"'+i(fcW). 



Figure 6.8: The safe not necessarily linear recursion proof net in soLAL. We assume that 
n = s = 1. 



of type (2.10), built on g, ho, hi . Instead, if / is basic or it is a linear composition, it is enough 
to follow [MO04] that defines the map from BC~ to ILAL. 

^f{io, X ; t/ iterates '"/lo"', ""/^i"" as many times as the length of w, from an initial 

''g(x ; y )"". In order to do this, '"/(w, x ; y y maintains a configuration, that changes 
at each step; a configuration can be ideally represented as a tuple 



(r, [fli, . . . , flr], [Xn, Xir], [Xni, . . . , Xpr], [l/n, . . . , 1/ir], - • • , [l/sl, ■ ■ • , J/sr]) 

The word r is initially ; y )"', then step-by-step accumulates the result of the recursion 
unfolding. The remaining elements of the configuration are lists of words, all with length r; 
at the beginning, r = \iv\ + 1, then the lists are consumed along the computation. 



An example. We give a simple example of the role of the configurations to represent '"y"i+n;s"i 
Let n = 0, s = 1, G = H, = '"/j,"', with / 6 {0, 1), = and a = Let a possible 
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unfolding of / be: 

/(s,j(;s„(;0));fl) = /z,j(s,,(;(8);fl,/(s,,(;0);fl)) (6.1) 
= /z,j(s;,(;(8);fl,/z;,(S;fl,/((8;fl))) 
= \ (3,2 (; (8); a, \(^; a, g{; a))) 

with ii,i2 £ {0,1}. Let us assume we can someway produce the initial configuration 

(Gfl, [0, 0], [fl,fl]), where every list is as long as s,j(; s,2(; 0)), i.e. 2 elements. The iterative 
application of a suitable step function from the initial configuration produces the following 
main steps: 

<G^,[0,0],[^,^]) ^* (6.2) 

<G^,<0,[M^]>,(^,[S])) ^* 

<H„05(G^,[M^],[^)^* 

(H,, 5 (G^), (Ml®), [■]), [•]» ^* 

<H„ My®)^!^,. 05 (G^), [■],[■]) 

The odd lines of (6.2) are configurations and the even ones pre-configurations. A pre-configuration 
comes from its preceding configuration by: (i) preserving the first argument, (ii) separating 
head and tail of every list, and storing them as the two components of a same pair, (iii) 
mapping the appropriate successor between '"sq"', '"si"' along the tail, only on the leftmost 
list. 

The suitable step function we mentioned above will be called C2Ci;i in Appendix A. 

6.3 Conclusions about soLAL and SRN 

We have concentrated our attention on soLAL because of a precise reason. We were searching 
for a subsystem that would be able to encode all the SRN programs. The more, we 
expected that such a 'P would generalize the principles of ILAL, and would respect all the 
natural assumptions that are present in the encoding from BC~ into ILAL of [ . . ]. soLAL 
is a subsystem with precisely these features. soLAL is an extension of ILAL; more precisely, 
SOLAL is the union of many different copies of ILAL, one for each sort of the modalities. The 
natural numbers can be represented in soLAL as binary Church numerals, exactly as in ILAL, 
even if there is one different type for each different sort. This is certainly reminiscent of the 
tiering of [ ], of which SRN is an example. The application of a Church numeral to any 
function /, i.e. the iteration of /, changes the type of / leading to a new function g that involves 
a higher number of paragraphs than /. The number of paragraphs is a measure of how many 
recursions and compositions are used to build g; exactly as in ILAL. Under these assumptions, 
SoLAL appears the best candidate subsystem we can use to accomplish our goal. 

On the other side, ILAL too can represent some functions of SRN~ that are not in BC~ 
(maybe all?). The real difference is how these functions are represented. The only way that 
we see, in ILAL, to represent a SRN~ function / is io flatten the distinctions among normal 
and safe arguments, thus having all the arguments of type W. On the contrary, soLAL is able 
to distinguish the normal arguments of / (of type zW for some /) and its safe arguments (of 
type y§'"(/cW) for some i,k). This distinction is crucial: it means that the type of the inputs 
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and of the output of / is (almost) preserved. This is in accordance with the intuition: the 
number m of paragraphs in the type of the output of f, that is equal to number of paragraphs in the 
type of the safe arguments, is a measure of the complexity of f. Namely, it is a bound on the number 
of nested recursion and composition schemes occurring in f. 

Now, soLAL is anyway not able to represent the whole SRN. This suggests some consid- 
erations. Let us focus for a moment on the theorems i%A -o i\A, for / < i, that are provable in 
SOLAL. These implications are a kind of inverse of the theorems \A -o %A, typical of ILAL. But, 
of course, ILAL and soLAL cannot prove %A -o \A because this theorem would break their 
polynomial time soundness. We like to imagine all the theorems i%A -o i\A as approximations 
of %A -o \A. Every such approximation is compatible with the polynomial time soundness, 
while its upper bound %A -o \A is not. This approach suggests that soLAL is the best subsystem 
of MS that extends ILAL under the natural assumptions we mentioned above. 

A pair of words about other, possible, subsystems of MS encoding SRN. We have tried 
lots of them, without getting any result better than the one of soLAL. Just as an example, 
we can imagine a subsystem based on of Section 6.1, where the numerals are encoded 
using asymmetric contractions. Of course this approach — as all the other ones we can 
imagine — is quite different from ILAL, thus getting far from the assumptions we underlined 
at the begirming of this Section. This is why we preferred to omit from this thesis all these 
attempts. Only a few of them — the ones more strictly related with so LAL — will be discussed 
in Section 8.1. 
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Chapter 7 

An alternative approach: LALL 



We have already seen that it is an interesting challenge to represent SRN programs inside 
some subsystem of MS. This was, in fact, the main motivation that led us to the study of MS. 
However, we did not reach our goal. We identified some subsystems that slightly extend the 
expressiveness of ILAL, but none of them is really able to capture the whole SRN. It appears 
like that the stratification property, that is fundamental for ILAL, is too strong w.r.t. SRN. 

In this last Chapter we will partially solve the problem using a different approach. We 
will present a polytime logic LALL that extends ILAL using both the levels of L^, and some 
recursive types. We will be able to compositionally encode into LALL all the finite initial 
fragments of all the SRN programs (Proposition 7.5.2). LALL is not a subsystem of MS. 
LALL is not stratified, but anyway it is weakly stratified, i.e. it satisfies a weaker notion 
of stratification. When we say weakly stratified, we do not refer to the property of Weak 
Stratification as defined in [BMIO], that strictly depends on the syntax of proof nets they use. 
More simply, we refer to the fact that, during a reduction, the residues of any node u are 
either at the same depth or at the same level of u (Fact 7.1.4). 

We strongly suggest the reader to read the summary of this Chapter at page 9, before this 
Chapter itself, where we have underlined the most important features of LALL. 

One possible objection is the following. Apparently, in this way, it is possible to represent 
in LALL every total fiinction, even the non-computable ones. Indeed, if / is a non-computable 
total function, and / 1 Z is a finite initial fragment of /, then / 1 / is also an initial fragment of 
some SRN program f;, so /1 / can be represented in LALL, and at last we have represented 
/ in LALL. However, we underline two facts, (i) The representation just given for / is non 
constructive, as we do not know which ti can represent /. (ii) We are not interested in the 
functions, but in the algorithms. It is not possible to represent every algorithm in LALL, but at 
least it is possible to represent the SRN ones. 

The previous observations are supported by the forthcoming Lemma 7.4.2. It shows that, 
in fact, all the functions g : W ^ W eventually constant can be easily represented in LALL. 
Eventual constant means constant for all but finitely many inputs. Every such a function is 
computable in constant time, so it is not surprising that they can be encoded in whatever 
logic. Anyway, g is encoded using a naive look-up algorithm, so that (a) the embedding 
is all but compositional, (b) the proof net required to encode g has really large size, and 
finally (c) Lemma 7.4.2 is useless in a complexity perspective, and we cannot use it for proving 
Proposition 7.5.2. 
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For all L For all R Implication L Implication R Bang L Bang R Paragraph L Paragraph R 



Figure 7.1: The nodes in the proof nets of LALL. 

7.1 Light Affine Logic by Levels 

The language of formulae. First, for any fixed countable set 'V of propositional variables, 
the set !F of formulae is generated by the following grammar: 

f:: = ^|a|F(8)f|F^f| Va.F | !F | §F ae'V 

where ^ is a constant. Second, we define the quotient "Fy of by assuming: 

y = Va.(a ^{B^y ^a)^a) (7.1) 

among the elements of !F. Namely, (7.1) gives to J?' the meaning of Scott numerals [ACP93]. 
The formula we shall effectively use are the equivalence classes in Fy. Every time we label 
an edge of a proof net of LALL by y, we can also label that edge by any "unfolding" of 
that obeys (7.1). B [^a] is the substitution of every free occurrence of a in B with C. Similarly, 
(Va.A){C} meansAp/„]. 

Proof structures and proof nets. LALL is a language of proof nets. Proof nets are defined, 
essentially, as for MS. For sake of simplicity, we will recall them here. Given the nodes in 
Figure 7.1, we say that an Axiom node and a Daemon nodes are proof structures. Moreover, given 
two proof structures IT and E: 

r_n_] [_?_] 

/ai aN /bi bN 

denoted as n > A^, . . . ,Ar v C and E > Bi, . . . , B; h D, respectively, with r,l > 0, then all the 
graphs inductively built from IT and E by the rule schemes in Figure 7.3 are proof structures. 
Now, indexing is introduced, exactly as in Section 8.2.2. 

Definition 7.1.1 (Indexing and Proof nets, adapted from [BMIO]) Let IT be a proof struc- 
ture. 

1. An indexing for Yl is a function I from the edges of IT to Z that satisfies the constraints 
in Figure 7.2 and such thatl{e) — l{e'), for every pair e, e' of inputs and output of IT. 

2. A proof net is a proof structure that admits an indexing. 
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Figure 7.2: Constraints on the indexing. The nodes we omit have the same index on all of 
their incident edges. 

3. An indexing I of IT is canonical ifTL has an edge e such thatl{e) — 0, and I{e') > for all 
edges e' of 11. 

Fact 7.1 .2 (Existence and Uniqueness of Canonical Indexing) 
Every proof net of LALL admits a unique canonical indexing. 

The indexing tells that the nodes \£ and %£ are not standard dereliction nodes. Instead, they 
are auxiliary ports of §-boxes whose border is somewhat /wzzy. We mean that a §-boxes is 
not necessarily either contained into or disjoint from another box. Instead, it can "overlap" 
a !-box, and it can have more than one conclusion Paragraph R. To distinguish §-boxes from 
the ! ones we adopt a dotted border (and also a different colour, if the reader is reading a 
coloured version of this thesis). Please notice that these boxes are completely useless, and 
they can be avoided as in [ O]; anyway, we think they are useful to underline that § and ! 
nodes are not dereliction nodes. 

Let Jo be the canonical indexing of IT and e e En- The level of e is /(e). It is defined as loie). 
The level ofYl is /(H). It is defined as the greatest value assumed by Iq on the edges of H. We 
denote as usual as Bn the set of the !-boxes in H, and it is naturally in bijection with the set 
of the nodes in IT. 

Normalization. Most of the normalization steps ins) are analogous to the namesake of MS, 
already described in Section 3.3. We just recall what they do. The linear normalization 
steps annihilate in the natural way a pair of linear nodes (Identity/Cut, -o£ / -o,^, ^^j^n, 
%lI%'R' ^x/^«)- The modal normalization steps are of two kinds: l^/l^^ is reduced merging 
the two involved boxes which can be ! -boxes as well as §-boxes fuzzy borders. Instead, 
contraction/lji duplicates the whole !-box cut with the contraction, as in ILAL. The garbage 
collection normalization steps involve the weakening or the daemon nodes, cut with any 
other node. It is always possible to reduce such a cut with the help of some more weakening 
and daemon nodes, as done in ILAL [AR02]. The set of cut nodes of IT is cuts(n). 

Fact 7.1 .3 (Cut-elimination) 

Every LALL proof net reduces to some cut-free proof net. 
We recall that the definition of stratification is at page 39. 

Fact 7.1 .4 (Weak Stratification) 

Let n be a LALL proof net such that IT ^ n' by reducing a cut node at level i and depth d. 
Let e be any edge in IT, and e' any one among its residues in IT'. Then, either d{e) - d(e'), or 
l{e) = l{e'). 
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Figure 7.3: Inductive rule schemes to build proof structures of LALL. (*) a does not occur free 
in Ai, . . . , Ay. (**) A !-box, which has at most a single assumption. 

7.2 LALL is polytime 

We adapt the definitions of [BMIO], with some minor modifications to handle the free weak- 
ening nodes. Let us fix a proof net 11 to reduce. We define an ordering over cuts (11) that 
determines which cuts to reduce first. 

A graph theoretic path in any proof net 11 is exponential if it contains a, possibly empty, 
sequence of consecutive contractions and stops at a !£ node. 

Let B, C e Bn- Let B <^ C if the roots of B and C lie at the same level, and the root of B is 
in cut with an exponential path that enters a left port of C. <^ is the reflexive and transitive 
closure of <j . One can show that is a partial order, upward arborescent: for every C there 
is at most one B such that B C. 

Let c, c' € cuts(n). We write c < c' iff one of the following conditions holds, (i) c' 
is connected to a weakening or a deemon, and c is not. (ii) The condition (i) is false but 
Z(c) < /(c') holds, (iii) The conditions (i) and (ii) are false, so /(c) = lie'). In this case, c <c' iff: 
(a) either c' is connected to a contraction, and c is not, or (b) c, d are connected to a contraction 
on one side, to the boxes B, B', respectively, on the other, and B <^ B'. 

Definition 7.2.1 (Canonical normalization) A sequence of normalization steps that starts 
from a given proof net Yl is canonical whenever cuts that are smaller under < are eliminated 
before higher ones. 

Theorem 7.2.2 (Polynomial bound for LALL) 

Let n be a LALL proof net of size s, level /, and depth d. Then, every canonical reduction is 
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long at most (/ + l)s*'^+^)' steps. 

The proof strategy coincides with the one in [BMIO], where the reduction of the garbage 
collection steps is delayed till the end. 

7.3 Preliminary notions about SRN 

We recall from Section 2.7 that SRN"'^ is the subset of SRN whose terms have normal arity 
n, and safe arity S. If not otherwise stated, ?" = ii, . . . , f„, will always denote sequences 

of m > terms of SRN. Moreover, we write |P| < /, for some / > 0, meaning that the 
size of every term is not greater than /. Now, we recall that, for every t in SRN"'^, and 
X = xi,...,xn,y = 1/1, 1/s, it holds 

|f(x; y)\ < pt (|xi|, . . . , |xn|) + max {lyil, . . . , |ysl) (7.2) 

where pt is the characteristic polynomial of t which is non-decreasing and depends on t. We 
notice that if m is a subterm of t, then deg(/?i,) < deg(pt), deg(/?) denoting the degree of the 
polynomial p. At last, we define the composition degree dc{t) and the recursion degree ^r(0 of t, 
as the functions that count resp. the number of safe composition and of recursion schemes 
inside t. 

Definition 7.3.1 (Output Bounding Function ofe.(-)) Let t in SRN"'® and I > 0. We define 
ob.(")/ that takes t and I as arguments, as obt{l) - ptQ, ...,/) + /. 

Fact 7.3.2 (ot).(-) Bounds the Output Length of t e SRN) 

For every t in SRN"'®, I > 0, and sequences x,y such that \x\, |y| < /, we have \t{x;y)\ < obt{l). 

The following definition will be used only in Proposition 7.5.2. Notice that nbt{l) is a polyno- 
mial, for every fixed t. 

Definition 7.3.3 (Net Bounding Function nb.{-)) Lett in SRN"'® and / > 0. We define nb.{-), 
that takes t and I as arguments, as nbt{l) - obt{obt{. . . obt{l) . . .)). 

dR(t)+dc{t) times 

We have to deal with various kinds of numbers, so the following correspondence is conve- 
nient: 

Fact 7.3.4 (Relation between Naturals, Scott words, and Words-as-Terms) 
Every sequence {di,...,di) with di,...,di e {0,1} and / > 0, identifies uniquely a number 
n = 2'-i • -h • • • -h 2° • di € N. So, both the term of SRN Srf,(; . . . Sdj(; ®) . . .) and the Scott word 
[n] identify n, too. We say that the sequence, as well as the Scott number and the SRN term, 
represent n. 

We underline that an infinite number of sequences, and of terms, represent the same n. 

7 A Preliminary useful proof nets in LALL 

Booleans. The type of booleans is B = V7.7 -o y -o y whose representative proof nets are 
in Figure 7.4. The proof net VB[fo] duplicates any boolean we may plug into by a Cut node. 
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(a) T (b) F (c) VB[b] 



Figure 7.4: Booleans. 




(b) SuccCo[zy] (c) SuccCi[if] 



Figure 7.5: (Church) Words. 

Church words, or simply words. The type of words is ^ = Va.!(a -o a) -o!(a -o a) -o 
§(a -o a). Figure 7.5 introduces the zero eC and the two successors. If w is a natural number 
in binary notation, w is its usual representation by a proof net. Figure 7.6 introduce a proof 
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(a) RevC[ii;] 



Figure 7.6: Bit reversion over (Church) Words. 

net that invert the bits inside any w, plugged by Cut into the dangling input of RevC[w]. 

Scott words. Intuitively, the type =5^ of Scott words describes a tuple of booleans. They are 
defined in Figure 7.7. On Scott words we have the proof nets in Figure 7.8. We remark that 
SuccSo[s] adds to s the least significant bit T, which stands for the digit 0, and SuccSi[s] adds 
F, instead, which stands for 1. PredS[s] shifts s to its right deleting the least significant bit. So: 

Remark 7.4.1 A Scott word is in fact a stack of bits, the least significant bit being on the top 
of the stack. 

Moreover, CondS[s, x, y] branches a computation, depending on the value of s. It yields x if 
the least significant bit of s is 0, or if s = t S, while it yields y if the least significant bit of s is 1. 
The preprocessing avoids to return eS: if s - eS, then s becomes SuccSo[£S]. Also, the three 
assumptions of type y in y, y, y v y specify the type of s, x, and y, respectively. 

Finite functions over Scott words. A function / : W — > A is eventually constant if there 
exists a constant C £ A such that f{vS) — C for all but finitely many inputs w. In this case, the 
support of / is the subset {ro € W | f{w) + C|, which is finite. Then: 

Lemma 7.4.2 (Finite Functions in LALL) 

Every finite function / : W ^ A, wliere A is a type representable in LALL, can be represented 
as a proof net in LALL. 
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(b) SuccSo[s] (c) SuccSi[s] 



Figure 7.7: Binary Scott numerals. 

A finite function / is completely described by its values on the inputs of the support. This 
description is finite. If the elements in the support are at most I bits long, / has at most 2' 
interesting couples (input,output). So, / is represented using a look-up table with 2' entries, 
that contains every possible output for all the 2' interesting inputs (Figure 7.9). 

This fact is theoretically interesting, but it will not be needed when proving Proposi- 
tion 7.5.2. Indeed, the size of the proof net representing / is O ^2^), that is too high for us. 
In the next two paragraphs we will show that, in some interesting cases, this bound can be 
reduced to 0{l). 

Duplicating Scott words. For any I > 0, the proof net VS/[s] > ^ h y^, where - .5^ ®y , 
is inductively defined on Z. It is in Figure 7.10. VS/[s] builds two copies of any Scott word 
at most as long as I. The generalization VsJ^[s] > h ® of VS;[s] duplicates a given 
Scott word at most as long as I which lies inside k > paragraph boxes. Specifically, VS|'[s] is 
VS/[s], while VS|'^[s] is in Figure 7.11, with k> 0, which is the only proof net that exploits the 
fuzzy borders of paragraph boxes. A boring exercise shows that: |Vs|^[s]| = 19 + 89/ + 3fc = 0(1). 



Coercing Scott words. For any k,l > 0, we define CoerS^[s] >y \- by cases on k, and 
by induction on /. lik — 0, then CoerS^[s] is the node Axiom. Otherwise, the proof net is in 
Figure 7.12, where, for i 6 {0, 1}, As.§'^(SuccS, [s]) > h -o denotes the proof net that we 
build by: (i) enclosing SuccS/[s] into /: paragraph boxes to get §'^(SuccS, [s]) > h §^^.5^, and 
(ii) adding an Implication R to §'^(SuccS,[s]) so to close it and get its type ^y -o ^y. The 
proof net CoerSj^[s] reconstructs a given Scott word at most as long as I into an identical Scott 
word inside k paragraph boxes. We can show that |CoerS|^[s]| = 43/ + 3/c/ = 0(/). 
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(b) conditional. 



Figure 7.8: Basic operations over binary Scott numerals. 

Scott words to words. The proof net StoC/[s] normalizes to the word w, for any Scott word 
at most as long as I. We do not describe it, as it has a structure analogous to the proof net 
CoerS|'[s] in Figure 7.12. 

^ ^ s 

Lifting. Let 11 > y",§''y h for some n,s,fc > 0. For every k' > we can build 

-> ^ s 

Li f t[n] > §'^+'^' y h y by: (i) enclosing 11 into k' paragraph boxes, getting 11', and 
(ii) plugging the conclusion of CoerSj^'[s], using Cut, into every of the n premises with type 
=5^ of n'. The final proof net is in Figure 7.13. The proof net Lift[n] is 11 deepened inside 
k' paragraph boxes. Notice that | Lift[n]| = |n| + k'{n + s + 1) + n|CoerSf [s]| = O (|n| + /). 

Contracting the premises of a proof net. Let 11 > A, § ^5^, § ^5^, A' \- A for some l,k > 0. 
We can build V|^[n] > A,§'^y,A' h A by: (i) writing 11' which is 11 with a new Tensor 
L between the two outlined premises of type §^y, and (ii) plugging the conclusion of 
Vsj'[s] > h O by a Cut, into the premise of the new Tensor L in 11'. Notice that 

|vf [n]| = PI + ivsf [s]| + 2 = Oil). 
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dummy [ j dummy j j dummy | " ' | dummy j 

(b) 



Figure 7.9: Proof nets that represent a finite function / : W — > A. 

7.5 Embedding SRN into LALL 

The goal is to compositionally embed SRN into LALL, with a map as much analogous as 
possible to the natural one from BC~ into ILAL of [MO04]. For any fixed n, and S the map 
[•]■ takes a term t of SRN"'^ as first and / > as second argument, and yields a proof net 
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(a) M > 



Figure 7.10: The Duplication proof net VSm : y -o y <S>y. 




(»r) 

(?y {?)■ 

[Cu^ 1 □ 

r VS; "i 1 1 





Figure 7.11: The generalized duplication Vsf [s] of Scott words. 



— >n 

[iV > y , ^y h ^y, for some k. We define the map inductively on the first argument. 

115 



CHAPTER 7. AN ALTERNATIVE APPROACH: LALL 



§*,y'T 



(B^,r^§',.5')^§'.5' 




























Q7) 1 As.§''(SuccSo[s]) 1 1 As.§''(SuccSi[s]) i i Coer! 




Jb y 



Figure 7.12: The coerce proof net CoerS|^[s] on Scott words. 



T 



i_ n "i 



I - 1 I 

I CoerS 



CoerS; I 



Figure 7.13: The Lifting of a proof net IT representing / up to M with k paragraphs. 



The base cases of [•]'. Some of them are straightforward: 



/ _ 



£S > h ^ 



rs,T = SuccS,[s] > y b 



(/e{0,ll) 



[P]' = PredS[s] > ^ V ^ [B T = CondS[s, x,y\> ,9" ,,9" V ^ 

where, s, x, y jute denote the inputs of the proof nets they appear into. Concerning the 
projection, [^^"'^1' is an Axiom that connects the f-th input to the conclusion, erasing all the 
other inputs by Weakenings. An example with 1 < f < n is: 



,w 



Notice that A; = here. 



The case of [•]' on the composition. We now focus ont - o{t' , mi, . . . , Un, Vi,..., Vs\ such 
that t' be in SRN'^'^ Because of space constraints, but without loss of generality, we show 
how to build [i]' by assuming m = n = S = 1, and r = 2. By induction we have: 



(;e|l,2)) 



By letting k - max{A:', /c,,, ki, k^], we get: 
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Figure 7.14: The (partial) translation of o[t', ui, vi, V2\ with missing contractions. 
Lift[rff > S^, %^5^, h Li£t[rMil'] > ^ h 

Liftfri'/i'] > f- (i e (1,21) 

Next, if we build n' in Figure 7.14, then [tl' is V2*^[V°[V°[n']]]. The two occurrences of V° 
contract three "normal" premises. One is from fwil'. The other two are from \v\^ , {vj^ . The 
occurrence of V^*^ contracts the single "safe" premise of [^1]' and [^21'- We insist remarking 
the existence of [t]' for any m,n,r,S. One can count: \\t'^\ < | Liftiri'T^'^^^ll + Lr I Lift[rW/l']l + 
L;.|Lift[ru;l']|+/c(l+n+s'n+s's)+s'n|CoerSf[s]|. So|m'| = o(\lt'r^'^'^\ + + L)\lvj^^\ + 

The case of [-T on the recursion. Let t - r[u^, uq, Ui\ with Wg 6 SRN"'^, uq, Ui e SRN"'^^'^'^\ 
Again, because of space constraints, we set n = s = 1 which is general enough to show the 
key point of the embedding. In the course of the iteration unfolding that Iff carries out, the 
safe argument gets duplicated, so we must contract them. By induction: 

1' > §''^y h §''^y lui']"'"^'^ > y, y, f'y, %^'y h %^'y (/ e {o, i)) 

By letting k - max{A;£,fco, fci}, and using Lift[-] in analogy to the translation of the com- 
position, [i]' is in Figure 7.15. The first argument, i.e. the Scott word that drives the recursion 
unfolding, becomes a word, and, then, it is necessary to reverse it by RevC. Otherwise we 
would unfold the iteration according to a wrong bit order, as implied by Remark 7.4.1 . More- 
over, (i) n projects the rightmost n -I- S -I- 1-th element of type A it gets in input and which 
contains the result, (ii) The two proof nets (8)^/^ , (8)£ I are two obvious trees of Tensor R and 



L nodes. Calculating the size, we get m\ = o(irM£l'| + IfMoT'"®! + IfwiT'"®! + oht{l)). 

Definition 7.5.1 (Simulating a Term by a Proof net) Let t be in SRN"'^, I e ]N, and Tl > y^ 

^ s 

i^y) I- ^y , for some k elN. Then, Yl fc-simulates t with /-bounded inputs if, for every pair 
of vectors of natural numbers x", y^, such that |x"|, |y^| < I, the proof net we get by plugging 
[xil^, . . ., r^nf/§*^ryil'/ • • •/§'^rysl' into the inputs of 11, in the natural way, normalizes to§'^\z']^, 
whenever z is the result oft{x^; y^). 

Proposition 7.5.2 (LALL simulates SRN) 

Let / > 0, and t e SRN"'^. Then, {t]' fc-simulates t with Z-bounded input. IVIoreover, (i) 
k < (9R(f) • 2-^^^, and (ii) for every fixed f, Ifffl is O (nbt(/)). 
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Figure 7.15: Safe Recursion. 

The statement holds by induction on t, using Fact 7.3.2, Fact 7.3.4, the definition of [•]' and of 
the size of every proof net used by [•]', and recalling that ob{) is defined in terms ofpt{-). 
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Chapter 8 

Further directions 



This last Chapter considers some possible directions for the future research. We have already 
begun the exploration of some of these directions; some others, on the contrary, are just ideas 
for future work. 

First of all, in Section 8.1 we consider some subsystems that may possibly encode some 
more functions of SRN than the ones that soLAL can represent. Two of them, co-SOLAL and 
SOLAL°°, are natural extensions of soLAL. The third one is lEAL, Intuitionistic Elementary 
Affine Logic, that is known to be not polytime. We conjecture anyway that it could be 
polytime, under some reduction strategy. 

In Section 8.2 we consider some possible generalizations of the framework MS. MS lacks 
several of the rules that one can find in literature. As we already said, we were interested 
only in stratified logics, because they are easier to handle than the other ones, and because of 
their philosophical similarity with tiering. We show that it is possible to extend MS without 
losing stratification. MS"*" is the extension of MS with generalized contractions, i.e. contractions 
with an arbitrary number of premises, on the style of [BMIO, Laf04]. Then, MS^ extends MS 
by the use of the levels of [BMIO]. At last we shall consider untyped proof nets, and we shall 
allow some recursive types on the labels, as [BM07]. The reason for all these generalizations 
is twofold. On one side, this potentially allows to capture inside MS other characterizations 
of FPTIME different from ILAL: for example, [BMIO]. On the other side, as we said, MS 
revealed not as expressive as we wanted: we were not able to encode all the SRN programs 
inside any subsystem of MS. So, maybe, a generalized subsystem of MS could be used for 
this purpose. In Chapter 7 we have seen that this sometimes is true: the system LALL is 
not a subsystem of MS, but it is a generalized subsystem, and it has revealed useful for our 
research. LALL simulates all the SRN programs. 



8.1 Beyond soLAL 

As we pointed out, soLAL strictly extends ILAL, but we can't embed the whole SRN into 
SOLAL. Here we propose two variation co-SOLAL and soLAL°° of soLAL that strictly extend 
SOLAL, and that could attain the target. lEAL will be considered in Section 8.1.3. 
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8.1.1 CO-SOLAL 

co-soLAL is the extension of soLAL with level-coercions, i.e. axioms extraneous to MS that 
prove i§A -o i§A for every i < j. Essentially, these nodes make all the modalities equivalent, 
so that CO-SoLAL is not strongly polytime; it is as expressive as lEAL (Intuitionistic Elementary 
Affine Logic). "Equivalent" here is used with a technical meaning: the modalities are all 
equivalent under '^t^. On the other side it is easy to encode SRN into co-soLAL. We show 
that there exists a polytime reduction strategy, but using it not all the SRN programs reduce. 
So, at the moment, co-SOLAL does not reach the prefixed target. Anyway, we conjecture that 
some strategy exists such that co-SoLAL is polytime and all the SRN programs can reduce. 

Definition 8.1.1 (CO-SoLAL) co-soLAL is the system soLALpJus the LC nodes (level-coercions) 
for every i < j: 




Notice that co-SoLAL is not a subsystem of MS, because of the presence of the external nodes 
LC. 

Lemma 8.L2 (About Equivalence of Modalities) 

In co-soLAL, for every pair of modalities (in,n), where n 1!, it is possible to prove h ma -<> 
na, using the "Flat" proof nets in Figure 8.L On the other hand, it is not possible to prove 
ma -o V.a, for any modality m 1!. 

Lemma 8.1 .3 (co-soLAL is Not Strongly Polytime) 

There exists a proof net in co-soLAL that takes an integer n and calculates 2". Such a proof 
net is in Figure 8.L 

Nevertheless, the system co-soLAL is polynomial-time in the following, weaker, sense. 

Definition 8.1.4 (Fast Strategy) A reduction 11 —> E is fast if the ns [Y/P] is applied only 
when the box does not contain any LC node. 

Lemma 8.1 .5 (Weak Polynomiality of co-soLAL) 

There exists a family of polynomials {pd^d^) \d,LelN} such that for every proof net n of co- 
soLAL, whose depth is at most d, contains at most L LC nodes, and for every fast reduction 
n ^, Pd,Ln bounds both k and |E|. 

Proof. Let 11 be as in the hypothesis, and fe be a fixed box at depth in 11. We want to show a 
bound on the number of consecutive spindles in 11, so we will able to adapt Lemma 4.3.31 to 
this situation. Let us consider a chain of N consecutive spindles. The spindles are connected 
through modal formulas hlAi, ... , whose sorts ij strictly increase, unless some LC 

box is present. Without LC's, at most M consecutive spindles may exist. Each LC let to add at 
most M new spindles to the chain; so M • L is a bound for the number of consecutive spindles. 
Now, thanks to (the proof of) Lemma 4.3.31, for each box h it holds Ru{V) < |n|^'^'''^. During 
the reduction, L does not increase because we are using the fast strategy. Now, we can look 
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(b) The exponential proof net, with k>2 



Figure 8.1: This proof net, in CO-SOLAL, if reduced, reduces in exponential time. It corresponds 
to the A-term An.(Ai/.add yy)2. The integers are N = Va.;!(a -o a) -o ;§(a -o a) for some 

back at the proof of Lemma 4.3.24 and we understand that it still holds: our bound on Rn 
implies a bound on the normalization time and size. □ 

Notice that we cannot deduce that 'P is polynomial time, according to Definition 4.1.4, 
but just that there is a polynomial that bounds the reduction as described in the statement of 
this Lemma. 

The fast reduction is not enough to represent SRN in co-soLAL. Indeed, let us think again 
to the recursive scheme. It takes a function g : jW -o (jW) -o {jWy -o yw, encloses it in a 
box, duplicates it as many times as needed, and at last applies the functions to the argument. 

Then, the recursion scheme returns a function / : fW -<^ (;W") -o (i§^i§fW^ ^ i^^fW; it is 
necessary at least one LC node to transform it to the right type /' : jW -o (yW") -o {jWy -o 
yW. To iterate /', we put it inside a box, thus we would need to duplicate a box containing 
an LC node, and the fast strategy does not allow this. 
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8.1.2 SOLAL~ 

In this Section, again, we extend soLAL. soLAL°° is the generalization of soLAL to infinite 
modalities. We show that the system soLAL°° is not polytime, and nevertheless all the 
functions that can be represented in it are poly time. 

Please notice that soLAL°° is not sensible, because every sensible subsystem has only 
finite modalities. So, we will not be able to use the general theorems. soLAL"" fits, on the 
contrary, in the setting described in Section 4.5. 

SOLAL°° is the union of all the SO LALm, for every number of modalities M. That is, soLAL°° 
is a system with infinite modalities: X = {il | / 6 N} U {/§ | / e N). soLAL°° is not polytime, 
because it can build chains of spindles arbitrarily long. However, we can show that: 

Lemma 8.1 .6 (Polynomiality of soLAL°°) 

There exists a family of polynomials {pd,Mi^) \ d,M e'N} such that for every proof net n of 
soLAL°°, whose depth is at most d and containing at most M modalities, Po»,M(in|) bounds 
both [n] and ||n||. 

Proof. Every such proof net is a proof net of SoLAL^^. So, is the polynomial provided 

by the polynomiality of soLALm (Fact 6.2.1). Notice moreover that the number M cannot 
increase during the reduction, this due to the peculiar form of the rewriting rules of soLAL. 
□ 



Corollary 8.1 .7 (Polynomiality of soLAL°°, #2) 

Let n : z'lW, . . . , 4W h ;W be a proof net of soLAL°° that represents a function /. Then, / is 
a polytime function. 

Proof. The thesis means that: there exists a polynomial pn(^i/- • -/^(t) such that for every 
word Wi : Zi W, . . . , Wj. : z'l W, the proof net obtained cutting 11 with Wi, . . . ,W]^ reduces in time 
and size bounded by pn (l^il • • • / W^k\)- 

Let us call 1. - wi \A . . . \A w^^. E is in soLAL^, for some M. Let d - ^(E). Thus, 
according to the previous Lemma, we can find a polynomial p{x) such that the reduction 
time and size of E is bounded by p (|E|). Now, notice that the parameters |n|, M and d do 
not depend on the particular values of the arguments Wi's. The size of E is essentially the 
size of the arguments of 11: |E| = |n| + |ziJi| + . . . + so we may choose pn (|h^i|, . . . , l^^l) = 
p(|n| + |wi| + ... + |W)t|). □ 

We conjecture that it is possible to represent into soLAL°° some functions not in SRN~. 
However, the encoding is not completely trivial.The work in progress under this line is based 
on the following preliminary definitions: 

Definition 8.1.8 SRN* is the set containing SRN~, pJus all the functions that can be obtained 
from SRN~ with 1 application of (not necessarily linear) safe recursion. 

Definition 8.1.9 Let f : — > N be a computable function, and 11 be a proof net of soLAL°°. 
Foreveryl e N, we say that H simulates /with /-bounded inputs if, whenever f{x-[, . . .,X|f) = 
X and \xi\,..., ^ h the proof net obtained cutting Yl with the corresponding proof nets 
Xi,...,X]( reduces to x. 
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Then, our conjecture is: 

Conjecture 8.1.10 (soLAL°° represents SRN* for /-bounded inputs) There exists a composi- 
tional map [•]■ that translates every SRN* program f{x;y) into a proof net r/(x;y)]' of soLAL°°, 
such that \f{x; y)]^ represents f{x; y) with l-bounded inputs. 

Proof idea. Let us imagine we want implement a proof net Yl calculating the recursive 
function starting from functions /zq, /2i e SRN~. Instead of really implementing a recursion, 
we just implement a composition of a sufficient number of copies of the step functions ho, hi . 
The greater is /, the greater is the tier of the output of 11; so it is necessary to work in soLAL°°, 
and not just inSoLAL. □ 



8.1.3 lEAL 

We have already pointed out (page 89) that lEAL is a non-polytime subsystem of MS. Here 
we describe how to map every SRN program into lEAL in a compositional way. Of course, 
this is not very interesting because lEAL is not polytime; anyway, we hope that some day 
lEAL will be proved weakly polytime, under some reduction strategy o that we don't know 
yet. 

The most natural translation is an adaptation of the Murawski-Ong coding for ILAL. 
f{x;y) is mapped into n : W, ... ,W, I'" W, ...,!"' W h !'"W, with W = !(a a) ^ \{a -o a) 
and for some m > 0. Of course all the functions in BC~ can be encoded in this way; but, 
this time, it is possible to contract the safe variables, thus getting full SRN. The number k is 
connected to the number of safe recursions used to build /. 

This result is not interesting, not only because lEAL is elementary-time, but because it is 
possible to represent in lEAL some elementary functions. Nevertheless, notice that some of 
the restrictions on the safe/normal variables typical of SRN still hold in lEAL. For example, 
lEAL proves W ^ ! W but ! W /o W. 

Now, the real problem lies in juxtaposition: in lEAL it can be encoded as concat : 
W -o W -o W, that is with only safe variables. As we said in Section 2.9, this allows the 
construction of some non-polytime function. So, the unknown strategy o that we mentioned 
before, necessarily must not reduce such a proof net concat. 

Another related observation. 

Proposition 8.1 .1 1 

Let P c MS be a subsystem that enjoys the strong normalization property. Let us suppose 
that P is weakly polytime. Then, for every n e PN(!P), |nf(n)| is polynomial in |n|. 

Proof. Almost immediate. By hypotheses there is a normalization strategy o such that Yl 
reduces to nf(n) in polynomial time and polynomial size. So, nf(n) has polynomial size. □ 

The latter Proposition is quite naive, and nevertheless captures a behaviour that is quite 
uncommon in the practice of subsystems of MS: firstly, there exists a normal form; secondly, 
the size of nf(n) is polynomial, independently on the chosen (possibly elementary-time) 
normalization strategy. This is exactly the behaviour of SRN. 
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8.2 Generalizations 

Let us return to the original problem: embedding SRN into some stratified logic. Instead 
of going on about SoLAL, we could imagine several different light logic for this purpose. In 
particular, we can imagine to extend the framework MS with several different constructions, 
without giving up to the stratification. 

8.2.1 Generalized Contractions 

The multiplexor of [ ], as well as the contraction of [BMIO], have an arbitrary number of 
premises. Let us consider a contraction with n > 1 conclusions: 



mi^ 



\m2A ' 



n > 1 



We denote Yc,(mi, . . . , m„) such a rule, n is called the rank of the contraction. The rank rk(n) 
of a proof net IT is the maximum of the ranks of its contractions; and we will call rk^ilT), 
for d < d{Yl), the maximum of the ranks of the contractions at depth d. MS"*" □ MS is the 
framework including all these new rules. We want to show that all the theorems for MS still 
holdinMS+. 

Lemma 8.2.1 (Generalization of Corollary 4.3.25) 

Let P c MS"^. Let us assume there exists a polynomial r{x) such that for every proof net IT 
of P and for every d W^j(n) < r(|n|). Then P is strongly polytime. 

Proof. The proof is long, but similar to the one of Corollary 4.3.25. The only difference is the 
definition of the modified weight T^ (defined on page 55): 



Td(n)= Trf(n,M) 



{1 ue{l, cut, W, h, Pi{m), i, o} 

3 M € {(8)£, V£, Vk, ^7^, Yq(m, n)} 

3 • (Pn(M) + 1) • L,eO{b) len(T) u e {Po(m)}. 

Notice that the only difference is the case for Po(m). The modification is due to the [P/Y] 
reduction rule: here, we do not know a priori the number of premises of the contraction, so 
a more complicated expression is needed. The new expression involves the length len(T) of 
the paths starting from the Po node, exactly as in [DL08]. □ 



Lemma 8.2.2 (Generalization of Lemma 4.3.31 : Short Chains and Number of Paths) 
Let P c MS"^. Let us assume that every chain of spindles that can be built in P cannot have 
more than L spindles, for some constant L € N. Then there exists a polynomial p(x) such 
that for every n e PNCP), for every d < d{U) and for every b e Bf^, 

Rnib)<p{\m. 
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Proof. Let us fix a box b at depth d; we want to count how many copies of d will be 
created during the reduction. We call n - rk(j(n). Then, we can proceed as in the proof of 
Lemma 4.3.31 at page 61: we divide the nodes of Yl at depth d in (at most) L + 1 classes (we do 
not write again the classification, because it can be found in the cited proof). IT, is the module 
(modules were defined at page 32) containing all the nodes of class at most i, and nii is the 
number of (generalized) contractions of class-z. R, is the number of paths starting from b and 
maximal relatively to IT/, so that Ru{b) = Rl- Every contraction may split a path into at most 
n new paths, so 

Ro < (n - 1) • mo + 1 
R,+i < Ri-{{n-l)-mi + l) 

L 

Rn{b) = Rl < JJiin - 1) • m,- + 1) < n^+i • |n|/+i < |n|/<^+i'. 

7=0 

□ 

Proposition 8.2.3 (Generalization of Proposition 4.3.40: A Polynomiality Criterion) 
Let P c MS"^ sensible. The following are equivalent: 

1 . :P is polytime. 

2. !P cannot build any dangerous spindle. 

Proof. 2. => 1. Follows from Lemma 8.2.2. 1. 2. The presence of a dangerous spindle leads 
to the construction of a family of proof nets that reduces in exponential time, exactly as in 
Lemma 4.3.39. □ 

Theorem 8.2.4 (Generalization of Theorem 4.4.25: Structure of Maximal Sensible Subsystems) 
Let P c MS"^ be a sensible subsystem with a linear < and with modalities in X. P is maximal 
iff P contains exactly the following rules: 

1 . all the rules Y(,(m, n) for every choice of q ^ m, n in X; 

2. all the rules Y(,(c),n) for every choice of q ^ n in X; 

3. all the rules Pq(q-, m*, . . . , m*) for every choice of mi, . . . , mjt < q in X; 

4. only one among Yi,(q, q) and Pq(q*, m*, . . . , mp, for every mi . . . , mjt < q in X. 

The proof is analogous to the one of Theorem 4.4.25. 
8.2.2 Levels 

The system Light Linear Logic by Levels, or L^, of [BMl 0] is an extension of I LAL characterized 
by the notion of levels and indexings. Intuitively, the system allows some rules that, apparently, 
seem some derelictions: 

r, §A h B ^ F, !A h B • 

However, inside a proof, each occurrence of such rules must be in some way balanced with 
other occurrences, thus forming some levels inside the proof net; as a consequence each group 
of such rules appear more similar to a promotion than to a dereliction. L^ allows only such 
balanced proofs. The formal definition of proof net of L^ relies on the notion of indexing, a 
proof net being accepted if and only if it allows an indexing. 
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Here we will extend MS with levels. The new framework is called MS^. There will be 
two different kinds of boxes: some ones will be physical, with a clear border, and containing 
a proof net inside them; the other ones will be fuzzy, their border will not be drawn and 
they can contain a graph that is not necessarily a proof net. A fuzzy box can also have more 
conclusions! Just to help the readability, sometimes we will draw these fuzzy boxes, with a 
dashed line. However, we consider only a very simplified situation: there will be no way 
to duplicate the content of a fuzzy box. This is what happens, e.g., in L^: the !-boxes are 
physical and can be duplicated, while the §-boxes are fuzzy and cannot be duplicated. This 
property will be assured by the presence of two disjoint sets X, Y of modalities: the modalities 
belonging to X will behaves differently from the modalities in Y. 

We find quite difficult to handle levels. The only result of this Section is a sufficient 
condition for polytime soundness (Proposition 8.2.21). To prove it, it will be necessary the 
whole power of the CS as it appears in [DL08]. We now try to give an intuition of zvhy 
our CS is not sufficient. The subsystems that use indexings are not really stratified, but just 
weakly stratified. For example, a normal box can intersect with a fuzzy box. In this case, it 
can still happen that a CS-path enters into one of such boxes; but the point is, where should 
it continue? after the solid box, or after the fuzzy box? or none? The only way to manage the 
situation is to consider all the possible CS-paths provided by the standard CS, and not only 
our CS-paths. 

Formally, let us fix two sets of modalities X and Y disjoint. We are going to define the 
quasi-proof nets: only some of them will be called proof nets. The quasi-proof nets of MS^y 
are defined by induction using all the linear and affine cases of Definition 3.1.3 at page 26, 
plus the following non linear cases: 

Rule Pq{mi, . . . , rrtj;) or Promotion: If q € X, and mi, . . . , m^t € X U Y, then the following is a 
proof net: 

© 




Rule Yp(m, n) or Contraction: If Aj = mA and Aj = nA for some i, j, and moreover p e X and 
m, n € X U Y, then the following is a proof net: 
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Box Output Box Input 



aU the other 
nodes 



Figure 8.2: Constraints for indexing proof structures. 



Port right: If rn € Y, the following is a proof net: 




Port left: If m € X U Y, the following is a proof net: 



I n I 



_Ai f 



Pi(m) ■ 



o 



Definition 8.2.5 (Indexing) Let 11 be a quasi-proof net of MSx,y- indexing for 11 is a 
function I from the edges ofYl to'Z. that satisfies the constraints in Figure 8.2 and such that 
I{e) = for every premise or conclusion e, e' ofYl. An indexing I is canonical i/ll has an 
edge e such that 7(e) = 0, and I{e') > for all edges e' of 11. 



Definition 8.2.6 (Proof nets) Let 11 be a quasi-proof net. Yl is a proof net of MSx,y iff it 
admits an indexing. 

Remark 8.2.7 A box input is not a dereliction. The indexing forces every box input to be 
balanced with some box output, so that in fact box inputs and outputs form a boundary for a 
subgraph that we can call a fuzzy box: a region with a fuzzy border. 

As an example, is a subsystem of MS^y with X = {!} and Y = {§}. 
Fact 8.2.8 (Rigidity) 

If I is an indexing for n and n e Z, tlien also /'(e) = I{e) + n defines an indexing for n. 
Fact 8.2.9 (Canonical Index) 

Every proof net of MSx,y has one and only one canonical indexing. 
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We will write Jq for the canonical indexing and I{1) for the indexing that takes value I on the 
premises. The worth point is that the Iq can take its value on an edge that is not a premise: 




Definition 8.2.10 (Level) Let 11 be a proof net with canonical indexing Iq. For e € En, the 
level ofe is l{e) - loie). For u e Vu, l{v) is the least value taken by Iq on the edges incident in 
u. The level of /(II), is the greatest value taken by Iq on En. 

Thanks to our conditions over X, Y, it follows that: 

Fact 8.2.11 (Contractive cuts) 

Let c be a cut of kind [Po{m)/\m{x, s)]. Then, m € X. 

On the other side, if c' is a cut of kind [Po{m) / Pi{m)], then m can be either in X or in Y. This 
means that a box may be in cut with a fuzzy box. 

Normalization. The normalization is extended from MS to MS^ in the natural way, replac- 
ing the [P/P] ns with [Po{m) / Pi{m)], for every m £ X U Y. This ns annihilates the two involved 
nodes. The boxes, both physical and fuzzy, merge in the natural way. 2 of the 4 possible 
combinations are in Figure 8.3. 

Notice that, thanks to Fact 8.2.11, a cut [Po(irt)/Y,n(r, s)] may exist only if the Po node lies 
on the border of a box; such a cut reduces in the usual way. This is the main reason that 
motivates our restrictions on X and Y in the construction of the proof nets. 

Notice also that MS^ is not stratified, in the usual sense, as Figure 8.3 shows: the fuzzy 
boxes do not influence the depth of the nodes. In that Figure, all the nodes of Z, change their 
depth. 

We now present some technical Facts that are useful when studying the reduction of the 
subsystems of MS^. Such Facts appear complicated, but, in fact, they are absolutely trivial. 

Fact 8.2.12 (Preservation of the Canonical Indexing) 

Let n -^s ^- If S is a linear ns or a [P/Y] ns, u e En and f e Ez \s a residual of e, then 
Io{e) - loif)- That is, the canonical indexing is preserved. Else, if S is a garbage collection 
step or a [Po/Pi] step, then Io{e) > Io{f). That is, the canonical index may have lifted down. 

Fact 8.2.1 3 

Let n ^* L. Then d(n) > d{L) and /(n) > /(E). 
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(a) [Po{m)/Pi(m)], with in e Y, q e X (b) [Po(m) / Pi{m)], with in e X, q e Y 



Figure 8.3: Two of the 4 possible cases in the reduction [Po{m)/Pi{m)]. For clarity reasons, we 
have drawn all the boxes with one only premise and one only conclusion. 

Fact 8.2.14 

Let n -^s ^- We consider the same indexing 1(1) over n and E. S is a ns involving a cut of 
n at depth d and index i. If S = [Po/Y], then E can contain new cuts only at depth > d. If 
S - [Po/Pi], then L can contain new cuts only at level > i. For every other S, E can contain 
new cuts only at depth d and level i. 

Our notion of context semantics (Section 4.3.1) appears too weak to handle levels. From 
now on, we will use the full power of context semantics of [DL08]. Context semantics 
is generally used to study properties of strong polynomiality, i.e. independently from the 
reduction strategy. To simplify the work, on the contrary, we will require that gc steps are 
always performed only when no other ns exist. These are the slowest possible reductions: 
every duplication is always performed, even if the reducts will eventually disappear due to 
age. 

We now recall the CS as in [DT 08]. An exponential signature is a formula generated by 
the following grammar: 

t =^e|r(0|l(0. 

def 

S is the set of exponential signatures. A stack element is an element of S = {a, o, f, s, x} U £, 
for every m € X U Y. A stack is a finite non empty sequence of stack elements. Let 11 a proof 
net. Then a context of 11 is an element of 

Cn =^£nx£*xS+xS. 

The rewriting relation among contexts C i->n C' is described in Figure 8.4. 

Particular kinds of stacks U € S"*" are the final stacks. We distinguish positive (denoted 
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(g, U, V, +) i^n Qh U,V-o, +) 
(e, U, V, -) h^n (h, U,V ■ a, +) 
{h,U,V-o,-) {g,U,V,-) 
{h, U,V-a, -) h^n (e, U, V, +) 




(g,U,V,+) (e,U,V-a,-) 
(h, U, V, -) h^n (e, U,V ■ o, -) 
(e,U,V-a,+) ^n{g,U,V,-) 
{e,U,V-o,+) h^n {h,U,V,+) 




(e,U,V,+) h^n (/J,U,y-£,+) 
{g,U,V,+) H^n (h,U,V-x,+) 
{h,U,V-f,-) i-^n {e,U,V,-) 
{h,U,V-x,-) {g,U,V,-) 



{h,U,V-f,+) H^n {e,U,V,+) 
(h, U,V-x, +) h^n (g, U. V, +) 
(e,U,V,-) h^n {h,U,V-i,-) 
(g,U,V,-) h^n (/!,HV-x,-) 



(e,U,y,+) (g,U,V-s,+) 
(g,U,V-s,-) {e,U,V,-) 



(e,U,V-s,+) ^n{g,U,V,+) 
(g,U,V,-) {e,U,V-s,-) 




(h, U, V ■ 1(f), +) i-^n (e, U,V ■ t, +) 
{h,U,V-r{t),+) ^n{g,U,V-t,+) 
(e, U,V-t, -) h^n (h, U, V ■ l{t), -) 
(g,U,V-t,-) ^n{h,U,V-r{t),-) 



i\ or 
f 1 



(e,U,V,+) ^n{g,U,V,+) 
ig,U,V,-) ie,U,V,-) 




(e, U-e,V, +) h^n (g, U,V ■ e, +) 
{g,U,V-e,-) h^n {e,U-e,V,-) 




(e, U,V-e, +) h^n {g, U-e,V,+ 
{g, U-e,V, -) {e, U,V-&,- 




[e, U, V, +) h^n (K U, V, +) 
(e,U,V-t,+) h^n (g,U-t,V,+) 

[h, U, V, -) i^n {e, U, V, -) 
(g,U-t,V,-) h^n (e,U,V-t,-) 



Figure 8.4: Rewriting Relation among contexts. Notice that if {e,U,V,b) i-^n {s',y',W,b') 
then also {e', W, V, b' i) {e, U, V, b i). 

with P) and negative (denoted with N) final stacks and define them mutually recursively: 

P ::= e|P-e|P-o|P-f|P-x|P-s|N-a; 
N ::= N-t\N-o\N-f\N-x\N-s\P-a. 



For example, the stack e • a • 1(e) is negative final, while e • a • f • a is positive final. A 
context C e Cn is final iff one of the following four cases hold: 

• If C = ((u, v), U, V, +), a{v) - o and y is a positive final stack; 

• If C = ((u, v), U, V, +), a{v) - W and V is a positive final stack; 

• If C = ((m, v), U, V, -), a{v) - i and V is a negative final stack. 
A context is said canonical if |fJ| = /(e). 

A CS-path over IT € PN(MS X, Y) is a sequence of canonical contexts connected through 
the rewriting relation. A CS-path is maximal if it begins from a Po and terminates in a final 
context. 

In Section 4.3.1 we defined the weight and the modified weight for each depth d; here. 
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we cannot distinguish the various depths: 

W{n) = Ru{b) where 

beBn 

Rn{b) — number of maximal CS-paths starting from b. 
T(n) = Tn(M) where 

ueVn 

(l a{u)i{Po,Pi} 

Tn(u) = 1 a{u) = Pi 

[{Pn{u) + 1) Lteoiu) len t a{u) = Po 

The following three Lemmas are essentially proved in [DL08]. 

Lemma 8.2.15 (Properties of the Modified Weight) 

Let n ^ E. (a) T(n) > T(E), so that [n] < T(n). (b) PI < T(n), so that ||n|| < T(n). 
Lemma 8.2.16 (Paths, Reduction Time, Used Space) 

Let n ^ E. (a) W(n) > W(E). (b) There exists a polynomial p{x,y) such that T(n) < 
P (W(n), ini), so that also [n], ipii < p (W(n), PI), (c) w(n) < [n] + ipy. 

Letting \\U\\ the number of exponential signatures in the stack U, we can prove that: 
Lemma 8.2.1 7 (Stratification) 

Let n £ PN(MSx,y), and {e,U,V,b) {e' ,U' ,V' ,b'). Then \\U\\ + \\V\\ = \\U'\\ + \\V'\\. 

The Definition 4.3.26 of spindle, as well as the Definition 4.3.27 of chain of spindles are 
untouched, just be careful that they now relies on a different definition of CS-paths: 

Definition 8.2.18 (Spindles and Dangerous Spindles) LefP c 23^ y/ ^ € PN(!P); e £ En an 
edge labelled mA entering a contraction u; f e Ejj an edge labelled nB outgoing a Po node 
b; d{e) = d{f). A spindle mA : E : nB between e and f (or also between u and b) is a pair of 
CS-paths: t frome to f passing through the left conclusion of u; p from e to f passing through 
the right conclusion ofu; and such that t and p are the only CS-paths connecting e with f. 
e, f, u are resp. the principal premise, principal conclusion and principal contraction of 
E. An edge that is premise (resp. conclusion) of a node ofL, but that is not part ofL, is said 
non-principal premise (resp. conclusion). We shorten mA : E : nB with m : E : n. Finally every 
mA : E : mB is dangerous. 

Definition 8.2.19 (Chains of Spindles) LefP c 23x/ n € PN(!P), 11 containing r > 1 spindles 
modniiAi : Ei : niBi, . . . , m,.A,. : E^ : n,.B,.. Let us suppose that each spindle E, is between nodes 
Ui and bi, and for each f < r 11 contains a CS-path between bi and m,+i. The graph composed 
of the r spindles and the r — 1 CS-paths is called a chain of r spindles, and we shall write 
miAi : &r : n,-Br for it. |0,| = r denotes the number of spindles it contain. 
Finally every mA : 0^ : mB is dangerous. 

Let P c MSx,Y- Let us assume there is a constant L € N such that no more than L 
consecutive spindles may exist in a proof net 11 e PNCP). We say that P has determinacy 
degree L. The strong determinacy of [DL08] is in fact a particular case: the determinacy 
degree is 1. 
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Lemma 8.2.20 (Determinacy) 

Let !P c MS^y with determinacy degree L e N. Tlien, tliere exists a polynomial p{x) such 
that for every u e Vn, Rn{u) < p{\Tl\). The degree of p(x) is L + 1. 

Proof. This proof is analogous to the one of Lemma 4.3.31, this time classifying all the 
contractions in 11 instead of just contractions at level d. 
Let bhe a fixed box at depth d in 11. 

1. We want to classify the links u e Vn in classes, class-0, class-1, class-2, . . . according to how 
many consecutive spindles there are between b and u. Let us consider all the possible paths t 
between b and u. Let us call E^' the module made up of all the nodes of all the t's. Let 
us consider all the possible chains of spindles O^, Wy . . . , whose nodes are among the 

nodes of E^. u is said class-i if i = max ||o^'| , , . . . , |Q|^'||. Notice that there are at most 
L + 1 classes (0, . . . , L) by hypothesis. 

2. Let Mi be the number of Contractions and Po nodes of class-z, and m = rao + . . . + mi. We 
observe that m < |n|. 

3. P will denote the greatest number of premises of the (non-fuzzy) boxes in 11, if this is 
greater or equal than 2; otherwise, we state P = 2. 

4. For <i <L, let 11, be the module containing all and only the class-] nodes, for every ; < i. 

5. A path T starting from b is maximal relatively to 11, if there exists a maximal path t' starting 
from b whose intersection with H, is exactly t. 

6. We call R„ for < z < L, the number of paths starting from b and maximal relatively to 11,. 
The definitions imply Kn(^) = Rl- 

We prove that Ri < YVj^Q {P ■ nij + l) by induction on Two paths separate only in a contrac- 
tion node or in a (non-fuzzy) promotion box, but not in a <S>£ node, which, instead, forces to 
go in one specific direction. This time, differently from Lemma 4.3.31, we have to deal also 
with paths that arrive to a Po link with negative context, and also in that point the paths can 
separate, in at most P different paths. 

In llo there are no spindles, meaning Rq ^ mo + 1. By induction, let R,-i < ny=o(^ ' + 

Then, the paths maximal relatively to n, are at most R, < R,_i • (P • m, + 1) < Yl'j=o (P • + l)- 

So, Rn(fc) = Rl < UU(P ' + 1) < • ^1)"^+'. □ 



PROPOsmoN 8.2.21 (Determinacy and Polytime Soundness) 

Let P c MS^ Y with determinacy degree L e N. Then, P is polytime. 

Proof. Consequence of Lemma 8.2.20 and Lemma 8.2.16. □ 



8.2.3 Untyped Proof nets. Recursive Types 

Here we consider two classical generalizations of proof nets, related to each other. Both 
such generalizations may lead to some new subsystems stratified, and nevertheless much 
more expressive than the actual subsystems of MS. This is why we are interested in a new 
framework allowing them. We shall see that it is reasonable to have MS proof nets with 
recursive types; less reasonable to have untyped MS proof nets. 
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Untyped proof nets. It is in the tradition of Light Logic that proof nets can be defined 
with or without types, that is formulse, labelling their edges. The results of polynomial time 
soundness for LLL, ILAL, SLL, hold for all the proof nets, typed and untyped ones. Untyped 
proof nets, on the logical point of view, are wrong proofs; and anyway there are two good 
reasons to consider them. The first reason is technical: considering the formulee, the previous 
cited logics are not polytime (cfr. Section 3.4.2). The second reason is more relevant: imtyped 
proof nets stay to typed proof nets in the same way as untyped A-terms stay to A-terms; they 
are programs, even if their behaviour may be sometimes weird (cfr. Section 2.1). 

We underline that most of the theorems that we proved for proof nets do not depend on 
the particular formulas appearing on the edges of the proof nets themselves. This means that 
such theorems can be easily generalized to the case of untyped proof nets, and to proof nets 
containing recursive types. HOWEVER, notice that the definition of "subsystem" strongly 
relies on the formulee. There is hardly any reason to decide if a [P/Y] or [P/P] cut can reduce 
or not, unless looking at the modalities labeling their edges. 

Recursive types. More interesting is the case of recursive types. In theory of domains [ * 
a recursive type is a type T that satisfies some recurrence equation T = A(T). In terms of 
proof nets, this means to consider formula up to the equivalence T = A(T). This identifies 
a class of proof nets larger than the typed ones, but smaller than the untyped ones. This 
approach has been used, e.g., in Chapter 7, when defining LALL; the Scott numerals/words 
can be typed only using a recursive type. For example, the following is the recursive type 
used for Scott numerals in [ACP93]: 

y = Va.a -o (y -o a) -o a 

= AxAy.x 
succ = An.AxAy.yn 

(no need for modalities). In this numerical system it is easy to write predecessor and 
conditional, but we can hardly encode anything else. Recursive types can be used to give great 
expressiveness to logical systems. For example, [ ] shows that ILAL without second 

order quantification but with some recursive types is complete w.r.t. polytime functions. 

There exists a large literature about recursive types. We recall a second approach we 
found in literature. We call T = [j.a.A{a) a particular solution of T = A(T); then, we add a 
new kind of node /i (i.e. logical rule), left or right, whose only effect is to change the type 
along an edge: 

FhAK^/J r,AK^/JhB 

m — — y-£ 

I^^ia.A ^ r,fia.AhB 

This approach has been used e.g. in [BM07, DLB06]. The advantage of this approach is that 
it is not necessary any quotient over formulee. Also Scott numerals are a least fixpoint: 

y - y.^.'ia.a -o (jS -o a) -o a. 

Of course, this second approach has also some disadvantages, first of all a heavier syntax for 
proof nets. 

In MS, as we said, most of the proofs of the theorems do not depend on the formulee 
involved in the reductions. So, it should be easy to generalize such proofs to proof nets 
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with recursive types, either quotienting formulae, or using [x nodes, without running into the 
problems that we saw about untyped proof nets. 
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Appendix A 

Encoding from SRN= to soLAL 



Here we give most of the details of the proof of Lemma 6.2.8 on page 100. 

The proof nets described in this Appendix represent the height of a work that traces back 
at least to [Rov07]. 

Briefly. The proof net that simulates '"/(w, x ; y is Iti+n,s[Ho, Hi, G] in Figure A. 13 (but 
its main components are in Figure A.15). It generates two copies Wi, W2 of '"zf"'. The first 
copy Wi is used to build the initial configuration; this is done by the proof net W2Ci+n;s (Word 
to Configurations) in Figure A.17. Then, the second copy W2 iterates a transition function 
C2Ci+n;s {Configurations to Configurations) in Figure A.4 and ff.. At last, the result is stored as 
the first element of the last configuration, and it is necessary some work to extract it. The 
proof nets C2FCi+n;s (Configurations to Final Configurations) in Figure A.23 and FC2Wi+n;s (Final 
Configurations to Word) in Figure A.24 do the job. 

A.l The details on the map from SRN= to soLAL 

We proceed as follows. Section A.1.1 is about the basic data types we shall be using, like 
words, strings, higher-order tuples, etc.. Section A. 1.2 introduces the basic nets, namely 
combinators for basic operation, like, for example, the coercions, that embed a word inside 
a certain number of boxes. Section A.l. 3 defines configurations, pre-configurations, and the 
transition function C2Ci+n;s at the heart of the virtual machine that implements the recursion 
unfolding inside soLAL. Finally, Section A. 1.4, gives the iteration of the transition function, 
starting from an initial configuration. 

A.1.1 Basic datatypes 

We define structure and operations relative to (sorted unary) naturals, (sorted binary) words, 
(sorted) lists, pairs and tuples exploiting the higher-order features of soLAL. We shall use them 
extensively in the course of the definition of Iti+n,s[Ho,Hi, G]. 

Sorted unary numerals. The type i% of sorted unary numerals, or simply numerals, is /S = 
Va.z!(a -o a) -o i%(a -o a), with i its sort. Each natural naturally corresponds to a closed 
proof netn>l- zSinsoLAL. In soLAL we can easily program the closed proof net Ss>yS -o jS 
that yields the successor of argument. 
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Figure A.l: Two of the four embedding proof nets we use in soLAL. 



Sorted binary words. The type /W of sorted binary words, or simply words, is fW = 
Va.f!(a -o a) -o i\{a -o a) -o i%{a -o a), with i its sort. Each word naturally corresponds 

to a closed proof net w>\- iW in soLAL. In soLAL we can program standard combinators 
on words. Ws0>l- jW -o y'W, Wsl>l- fW -o y'W are two successors that we can use to set 
'"sq"' = Ws® and '"si"' = Wsl. Wsl obviously generalizes the successor on strings. Ws® must be 
defined to erase every occurrence of the symbol to the right hand side of the most significant 
bit of a word, as in [MO04]. This forces every To, with ^ 0, to have 1 as its most significant 
bit. Wp > h jW -o jW is the predecessor which erases the least significant bit of its argument. 
We can use it to set '"P"' = Wp. Finally, W2S > h ;W -o ;S maps a word a; to a numeral n so that 
n counts the number of bits of w. 



Sorted lists. The type iL(A) of sorted lists whose elements are of type A, or simply lists of 
type A, is zL(A) = Sa.i\{A ^ a -o a) -o i%{a -o a), with / its sort, nil is the name of the empty 
list [ ]. 



Higher-order pairs and tuples. We choose to exploit the expressive power of higher and 
second-order formulee in soLAL to represent pairs and tuples. The type A Q B oi pairs is 
AqB - ^y.{A -o B -o y) -o y, a standard second-order encoding. Its generalization to tuples 
of n > 1 elements is Ai O . . . O A„ = '^y-ii~°l=i ^^k) y) -°7- O"^ will abbreviate A O ... ©A, 
with n occurrences of A. 



A.1.2 Basic proof nets 

We call basic the proof nets we are going to introduce because, after some programming 
experience inside SOLAL, they seem unavoidable tools to use proof nets-as-programs. They 
realize embedding and coercion functions that enclose proof nets inside boxes, and the 
diagonal functions that replicate the same word into tuples. 
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Figure A.2: The proof nets Crcy<; ;t with / < and Crcj<, yt, with / < for any k. 

Embedding. There are four kinds of embedding proof nets, every of them taking a proof 
net n > h A -o B as parameter. Every embedding places the parameter into boxes as the boxes 
were functors. Thee proof nets simply change the type of n, but do not change its intended 
computational behaviour. Two examples are in Figure A.l 

Coercions. There are two kinds of coercion proof nets, as in Figure A.2. Every of them takes 
a word of type y W to reconstruct it inside a box. It is worth remarking that the analogous 
of Crcy<, jt > I- /W -o il{kyV), with / < /, for any k, cannot exist in ILAL where the result of a 
coerce proof net can only be inside at least a paragraph box. 

Diagonals. There are two kinds Vj<; /^z Vy<,- of diagonal proof nets. Figure A. 3 introduces 
V^^.j.. The other can be obtained from V^^.^. by transforming the paragraph box into an 
of-course box. V^^ . takes an argument of type /W to replicate it twice inside a box. The 
replication comes by iterating Hq, Hi in Figure A.3 with the argument, starting from a pair 

of occurrences of 0. Both diagonals can be generalized to V^.^,, and VJ^. ^, with type /W -o 
/§(0'"fcW), and ;W -o z!(0'"A:W), respectively, for any m>2. 

A.1.3 Configurations and transition function between tliem 
Configurations. For every k > 1, / 6 N, the type of the configurations of sort i is: 
C[Ci . . . Ck; C] = Vai . . . aU^l, i\(C, - a, - a,)) ^ '§((^'=i «0 Vy.((C -o {^1, a,) ^ y) y)) 

such that {«!, . . . , ak, y] n FV(C) = 0. The structure of C[Ci . . . Ck; C] implies that every 
configuration is a tuple of lists whose element type is C„ with 1 < i <k, but the first element, 
which is not a list, but a single element of type C. We shall use the canonical instance: 

C[Bi . . . Bs;B] = C[/W . . . /W Bj . . . Bs;B] 
" ' 

l+n 
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V2^.^is J-f„withie |0,l},is 




To = j'.((kW O ;cW) -o (kW kW)) 

j<.((kW O kW) (kW fcW)) Ti = (kW kW ^ {kW /cW)) -o (kW Q kW) 

-o ;§((W fcW) ^ (m O /cW)) ! = requires / is Ws8 

Ti = {kW fcW) ^ (fcW W) = 1 requires / is Ws 1 

Tz = j<.i(kW O m) ^ (fcW O kW)) 
T3 = ;§((A:W kW) -o {kW O kW)) 



Figure A.3: The proof net V^^.^ with j < i, for any k. 



of the type of the configurations, where k = 1 + n + S, for some given n,S > 0. Every 
configuration, as we have seen, is a tuple: 

It follows that (i) every configuration is a tuple whose first element is a word r, and all the 
remaining elements are lists, all with the same length r, (ii) Proposition 6.2.5 implies that 
every Yl^q is, in fact, a word inside a certain number of boxes, and (iii) the elements of the 
lists are all at the same level, which, as first noticed in [Rov99], is basic to hope getting an 
iterable transition function in a stratified system like soLAL. 
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Pre-Configurations. For every k > 1, the type of the pre-configurations is: 

PC[ai ...UK-Xi... Ck; C] = Vy.((C ^ (^ti T[a,; Q]) ^ y) ^ y) 
T[a;C] = V/^.((U[a;C]^|3)-/?) 

U[a; C] = (C ^ a ^ a) -o (C -o C) ^ C ^ a (tuple of couples of (C ^ C) and C) 

such that {ai, . . . ,a\^,y]n FV(C) = 0. We shall use the following canonical instance of the type 
of the pre-configurations: 

VCIuq . . . an+s; Bi . . . Bs; B] = VC[ao . . . an+s; fW...zW Bj . . . Bs; B] 

l+n 

where k = 1 + n + S, for some n, S > 0,m > 1. Every pre-configuration is in fact a tuple of 
tuples: 

(r, (fll, [flj, ...,«;]) , (Wi, [TT^, . . .,nTr]), (rha, [rha, ■ ■ ■ , "I^]) , (Hn, [Uu, ■ ■ • ,nir]), . . . , (llsi, [ns2, • . • , Flsr 

The proof net C2Ci+n;s [F, F']. The root of its definition is in Figure A.4. Its main components 
are the proof nets C2PCi+n;s and PC2Ci+n;s, which split the move "configuration to configura- 
tion" in two simpler steps: "configuration to pre-configuration" and "pre-configuration to 
configuration". 

C2Ci+n;s requires two parameters F and F'. F must be a closed proof net of type C -o C, for 
some C. It will be either a successor on words, mapped on the first list of the configuration 
in input to get the next value of the step function, or a function identity, mapped along all 
the remaining lists of the configuration in input. F' is a closed proof net that is used as a step 
function by PC2Ci+n;s- Looking back to Proposition 6.2.5, instances of F' must be ''ho'^ and 
'"/ii"', relative the recursive function f^+"'^ of SRN we want to represent. Both '"//q"' and ''hi'' 
have type (^^^^ ;W) ^ i^l^^ B^) ^ B ^ B, with Bi...Bs,B instantiated by ;W. 

The proof net C2PCi+n;s[f ]• It is defined by the set of proof nets in Figure A.5, A.6, A.7, and 
A.8. The proof net takes a configuration in input, separates the first component of every list 
in the configuration from its tail, and maps F along the tail. In particular, if F is a successor 
on words, all the words in the tail get increased. 

Specifically, Figure A. 8 contains a step function StC2PC[F] that takes a list and applies 
F : C ^ C (F is the successor or the identity) to each element of the list but the head. 

The proof net PC2Ci+n;s[f ']• It is defined by the set of proof nets in Figure A.9, A.IO, A.ll, 
A.12. F' has type {-^I^q /W) -o (^^^^ B^) ^ B ^ B. The graph with name "1 -h n -h s W 
nodes" in Figure A.ll contains only as many as 1 -I- n -I- s nodes W. 

A.1.4 The iteration 

Finally, we can define Iti+n,s[Ho,Hi, G] that iterates C2Ci+n;s[f/.f'] from an initial configura- 
tion, for a sufficient number of times. From the last configuration the iteration produces we 
can extract the word that represents the result of '"j^i+n;s"i \Ye have already described (at the 
beginning of this Appendix) the interaction among the proof nets Iti+n,s[Ho,Hi, G], W2Ci+n;s, 
C2Ci+n;s/ C2FCi+n;s, and FC2Wi+n;s- The last two proof nets use final configurations, that we have 
not defined yet. We proceed by first setting the final configurations, and, then, by bottom up 
introducing Iti+n,s[Ho,Hi, G]. 
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C2Ci+n;sKF']is 



C[Bi-..Bs;B]^iC[Bi..-Bs;BI 




PC2Ci+n;s[F'] is in Figure A.9. 
C2PCi+n;s[F] is in Figure A.5. 



Figure A.4: The proof net C2Ci+n;s[f,f '] 

Final configurations. For every k > 1, the type of the final configurations is: 

FC[Ci . . . Ck; C] = Vai . . . aky.(^ti ^'KQ ^ a, ^ a,)) ^ «<) ^ (C ^ (^^i «0 ^ r) ^ Y) 

such that {ai, . . . , ak, y} n FV(C) =. The difference with the type of the configurations is the 
extrusion of the universal quantifier on y. We shall use the following canonical instance of the 
type of the final configurations, for some given n, s > 0, and m >1: 

FC[Bi ...Bs;B] = FC[zW . . . fW Bi . . . Bg; B] 

l+n 
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C2PCi+n;s[F] is 

I / in Figure A.(] | 

'S(hfeo'fl"'''"l)^H=lf["l-+nftl)^'C["o-«n"'Bl-5=^Bl) 



H in Figure A, 7 



C[Bi-..Bs;B] 










(■!(;W^ 











Figure A.5: The proof net C2PCi+n;s[f ] 

The final configurations are a necessary step to extract, with the correct typing, the first 
component of a configuration, that will represent the result of an iteration. 

The proof net Iti+n,s[Ho, Hi, G]. Assuming Hq, Hi, G be proof nets such that: 

Hi > h /W ^ i^l^ yW) ^ i^l^ Bk)^B^B {i e {0, 1}) 

Iti+n,s[Ho, Hi, G] is in Figure A.13, A.14, A. 15, and A. 16. We have already described the computational 
behaviour of this proof net. 

The proof net W2Ci+n;s- It is in Figure A. 17 and A.18. 

We conclude with some comments on the structure of the proof nets in Figure A.18. For every 1 < 
< n, Ss(W2SA:^) is obtained by applying Ss>;S -o fS to the result of the application of W2S>yW -o zS 
to an argument of type /W, represented by kq in the name of the proof net. An analogous definition 
holds for every Ss(W2S /ip), with 1 < p < S. 

The proof net L2Ci+n;s[f]- Assuming that F be a proof net such that F>i- B, L2Ci+n;s[F] is in 
Figure A. 19, A.20, and A. 21. It takes 1 + n + s lists, each with as many elements as the number of 
digits of the main argument of y^^+^-s, augmented by 1, and yields the expected configurations. 
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Figure A.6: The proof net / for C2PCi+n;s[f ] 
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StC2PC[F] is in Figure A.8. 



C[Bi . . .Bs;B] = (^Lo '-(i^ -oa^^ Uk)) -o (-o^ iKBk ^ a/c+n ^ a)c+n)) ^ 
'§((->fco «t) -o Vy.((B ^ at) -oy)^ y)) 
Vo = (^Lo ^ T[a^; ;-W] ^ T[at; ;!¥])) ^ (^^^^ i!(Bt ^ T[«^ 

r° = i\{jW TliXf.; jW] ^ Tlaj.; yW]) (0 < < n) 
= i\(Bt ^ TK+n; B/c] ^ T[«t.+n; Bt-]) (1 < /c < s) 

^ "k) (0 < /c < n) 

(1 < A: < s) 

^1 = '§((^"=0 ;W]) ^ (^1^1 T[ak+„;Bt]) -o PC[ao ■ ■ ■ «n+s; Bi . . . Bs; B]) 



B/c]-'T[at+p;Bt]))^i§yi 



el 



Figure A.7: The proof net H for C2PCi+n;s[f ] 
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APPENDIX A. ENCODING FROM SRN= TO SOLAL 



BaC2PC[G] is 




T[a;C] = Vj3.((U[«;C] ^ ^) ^ ^) 

Via; C] = {C ^ a ^ a) -o (C ^ C) ^ C ^ a 



StC2PC[F] is 



{C^a-=a)^C-=T[a;C]-=n„-,Cl 
|C^T[«;C]^iT[ii;C] 




Figure A.8: The proof nets BaC2PC[G] and StC2PC[F] 



PC2Ci+n;s[f'] is: 

R:|<r„...,i„+s;B,-..B,;B]^((B^(^™Oi.)^r)^,. 



K:|„o...a„+,;Bi...Bs;B]=V,..(B^(^J^IjTl,n;;lVI)^(^|^J|„l.+„;Bi.])^v)^ 




*(^E,„T|ni.;;Wl)^(^f^,TK.+„;Btl)^((B^(^™ai.)^,.)^v) 



J ff in Figure A lO 



T = (B ^ (-'Lo T[at;;W]) ^ T[«t+p;Bt]) ^ ((B ^ (^."^^ a,) ^ y) ^ y)) ^ ((B -o a,) ^ y) ^ y) 



Figure A.9: The proof net PC2Ci+n;s[f'] 
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A.l. THE DETAILS ON THE MAP FROM SRN= TO SOLAL 



Hfor PC2Ci+n;s[F'] is: 



''^(^tl)T[«l-'*'l)^<^'=lT['"i+n;BiI)^((B^(^;3i>i)^r)^)-) 




Tt = (V[at; jW] -<> V^+i ) V^+i (0 < Ic < n) 

n = (U[«r,+^; B)c] I'Li ) (1 < < s) 

= V[at; jW] -o (^U,^^^! U[a„; ;W]) ^ (^^^^ U[an+m; B„,]) -o ((B ^ (^1;+= a,,,) -^y)^y) (0<k<n) 

V[ = U[an+)c; Bi] (^Lm U[an+»,; B,„\) ^ ((B ^ (^jj+t, «„,) y) ^ )') (!<»;< s) 



Figure A.IO: The proof net H for PC2Ci+n;s[f '] 
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APPENDIX A. ENCODING FROM SRN= TO SOLAL 



/forPC2Ci+n;s[f']is: 




Figure A.ll: The proof net / for PC2Ci+n;s[f '] 
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A.l. THE DETAILS ON THE MAP FROM SRN= TO SOLAL 



Kfor PC2Ci+n;s[F']is: 




Figure A.12: The proof net K for PC2Ci+n;s[f"] 




Figure A.13: The proof net Iti+n,s[Ho, Hi, G]. 
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APPENDIX A. ENCODING FROM SRN= TO SOLAL 




T2 = i§{jW) ^ #(;'W O jW) 
T3 = !§(;W) ^ !§3;§(;W) 



Figure A.14: The proof net K for Iti+n,s[Ho,Hi, G]. 
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A.l. THE DETAILS ON THE MAP FROM SRN= TO SOLAL 



C2Ci+n;s[f/ G] is in Figure A.4 
W2Ci+n;s is in Figure A.17 
FC2Wi+n;s is in Figure A.24 
C2FCi+n;s is in Figure A.23 
Ba2St[G] is in Figure A.16 



/forIti+p,s[Ho,Hi,G]is 




T2 = !!(C[Bi . . . Bs; B] ^ C[Bi ...B,; B]) 
T3 = !§(C[Bi...Bs;B]^C[Bi...Bs;B]) 

jWojW = \/y.{jW jW ^ y) y 




Figure A.15: The proof nets / and H' for Iti+n,s[Ho,Hi, G]. 
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APPENDIX A. ENCODING FROM SRU= TO SOLAL 



Ba2St for Iti+n,s[Ho, Hi, G]is 




Figure A.16: The proof net Ba2St for Iti+n,s[Ho, Hi, G] 
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A.l. THE DETAILS ON THE MAP FROM SRN= TO SOLAL 



i§(C[Bi...BB;B|) 




Figure A.17: The proof net W2Ci 
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A.l. THE DETAILS ON THE MAP FROM SRN= TO SOLAL 



L2Ci+n;s[F]is 




Figure A.19: The proof net L2Ci+n;s[f ] with i > j. 

The proof net S2L. It is in Figure A. 22. It remarkably exploits the more general structure of the 
bang boxes of soLAL, as compared to those ones of ILAL, to generate a list of copies of a word. Using 
S2L we shall also duplicate the safe arguments of the recursive function we want to represent. 

This is the basic step to represents recursive functions whose safe arguments must not necessarily be 
linear, as, instead, is required for the recursive functions of BC~ representable inside ILAL [MO04]. 
Namely, this is the basic step to extend BC~. 
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APPENDIX A. ENCODING FROM SRN= TO SOLAL 




To r Ti 











\ 


□ 
1 




T' 



T'r. U„+i u;^, Un+, 



Tk =Vat.i!(;'W ^ at ^ Uk) ^ i§(at -<> 
=i!OW ^ at ^ ak) 

T'k =iKM -^ak^ "k) !§(«t "k) 
Uk =^ak.i\{Bk -o ak ^ ak) ^ i§{ak ^ a^) 
Lffc =iKBk ^ «/t) 
U't =iKBk -o ^ "k) -o ^ "(c) 



(0 < < n) 
(0 < < n) 
(0 < < n) 
(1 < < s) 
(1 < A: < s) 
(1 < < S) 



Figure A.20: The proof net / for L2Ci+n;s[f]- 
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A.l. THE DETAILS ON THE MAP FROM SRN= TO SOLAL 



(^;;„'«i)^V,..((B^(^™a,)^v)^,.) 




□ 



□ 



Figure A.21: The proof net H for L2Ci+n;s[f ]■ 
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APPENDIX A. ENCODING FROM SRN= TO SOLAL 




Figure A.22: The proof net S2L of SoLAL, with i > j. 

The proof net C2FCi+n;s- It is in Figure A.23. It maps a configuration to the same config- 
uration, but with a slightly different type that allows to extract the first component of the 
resulting configuration, namely, the representation of f^+"''^^ applied to some normal and 
safe argument instances. 

The proof net FC2Wi+n;s- It is in Figure A.24, where we assume (i) Hj; > h Bj^, for every 
1 < A; < s, (ii) n' calculates the first projection of two elements, and (iii) D" calculates the first 
projection of n + s elements, which erases all the lists inside the final configuration, keeping 
only its first element. 
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APPENDIX A. ENCODING FROM SRN= TO SOLAL 




Figure A.24: The proof net FC2Wi 
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